IT Questions and Answers :)

Tuesday, July 2, 2019

Which of the following is true regarding Group Managed Service Accounts (gMSAs) in Windows?

Which of the following is true regarding Group Managed Service Accounts (gMSAs) in Windows?

  • gMSAs are supported on Windows Server 2008 R2 and later versions.
  • gMSAs do not have passwords.
  • gMSAs are not supported in SQL Server.
  • gMSAs can be used to run Scheduled Tasks. 

Which of the following is true regarding Group Managed Service Accounts (gMSAs) in Windows?

EXPLANATION

gMSAs can be used to run Scheduled Tasks, but as of Windows Server 2016, their assignment to tasks is still not supported through the Task Scheduler MMC.  Whenever you go to assign one to a task and try to set the task to run without the account being logged on, the console will complain about not receiving a password for the account.
10.196.10.135"The fundamental problem is that you can’t use the Task Scheduler UI. So we’ll use PowerShell cmdlets, instead. (You could also use schtasks.exe with an XML config file, but I’ll let you figure that one out yourself)."
gMSAs are supported on Windows Server 2008 R2 and later versions.MSAs are supported on WS 2008 R2 (but are limited to use on a single computer).  gMSAs require WS 2012 or later.
gMSAs are not supported in SQL Server.
gMSAs (and MSAs) can be used with SQL Server 2012 and later versions.  MSAs can't be used when failover clustering SQL Server.
gMSAs do not have passwords."The password for gMSAs are generated and maintained by the Key Distribution Service (KDS) on Windows Server 2012 DCs..."
"Passwords are very complex and changed automatically as often as desired (by default every 30 days). The passwords are cryptographically random and 240 bytes long."
https://blogs.msdn.microsoft.com/markweberblog/2016/05/25/group-managed-service-accounts-gmsa-and-sq...


SOURCE

https://blogs.technet.microsoft.com/askpfeplat/2012/12/16/windows-server-2012-group-managed-service-accounts/
Share:

Monday, April 22, 2019

What is the command to restart IIS services on the command line?

What is the command to restart IIS services on the command line?

  • iisrestart
  • iisreset
  • iisrecycle
  • iisrefresh 

What is the command to restart IIS services on the command line?

EXPLANATION

An IIS server can be restarted without rebooting the entire machine by running the iisreset command on the command line.  There is a button on the IIS management console that can also do this; additionally, you can manually restart the services involved.


Take IISReset as a suite of commands that helps you manage IIS start / stop etc.
Which means you need to specify option (/switch) what you want to do to carry any operation.
Default behavior OR default switch is /restart with iisreset so you do not need to run command twice with /start and /stop.
Hope this clarifies your question. Check this MS DOS help picture you will understand.



Share:

Tuesday, April 16, 2019

In Windows Server, which command line command can you use to determine your logon server?

In Windows Server, which command line command can you use to determine your logon server?

  • ipconfig /logonserver
  • find /logon_server
  • echo %logonserver%
  • echo %logon_server% 
In Windows Server, which command line command can you use to determine your logon server?

EXPLANATION

the DC you use as the logonserver may be one of several in the domain. Your PC will determine the “best” DC to use based on how your AD sites are setup.
If you are in a situation where you need to discover which DC the PC you're using has used to logon you can do this using the echo %logonserver% cmd.

Share:

Tuesday, April 3, 2018

A group of servers that work together to maintain high availability of applications and services is known as a

A group of servers that work together to maintain high availability of applications and services is known as a

  • Fallover Cluster
  • Fallsafe Cluster
  • Failsafe Cluster
  • Failover Cluster 

A group of servers that work together to maintain high availability of applications and services is known as a

EXPLANATION

A failover cluster is a group of servers that work together to maintain high availability of applications and services. If one of the servers, or nodes, fails, another node in the cluster can take over its workload without any downtime (this process is known as failover).
https://technet.microsoft.com/en-us/library/hh831579(v=ws.11).asp
Share:

Wednesday, January 31, 2018

Which of the following is a software program that uses the Secure Shell protocol to accept connections from remote computers?

Which of the following is a software program that uses the Secure Shell protocol to accept connections from remote computers?

  • LogMeIn
  • Remote desktop
  • Team viewer
  • SSH server 

 
Which of the following is a software program that uses the Secure Shell protocol to accept connections from remote computers?

EXPLANATION




A Secure Shell  (SSH) server is a software program that uses the SSH protocol to accept connections from remote computers. SFTP/SCP file transfers and remote terminal connections are popular use cases for an SSH server.
 
Share:

Friday, January 19, 2018

When installing a new domain controller into an exisiting Windows Server 2012 R2 domain using Windows PowerShell, which cmdlet do you use?

When installing a new domain controller into an exisiting Windows Server 2012 R2 domain using Windows PowerShell, which cmdlet do you use?

  • Promote-ADSDomainController
  • Install-ADDomainController
  • Get-ADDSDomainController
  • Install-ADDSDomainController 
 
When installing a new domain controller into an exisiting Windows Server 2012 R2 domain using Windows PowerShell, which cmdlet do you use?

EXPLANATION

When installing a new domain controller into an existing AD domain, use the Install-ADDSDomainController cmdlet and the parameters that meet your needs.

SOURCE

https://technet.microsoft.com/en-us/library/hh974723%28v=wps.630%29.aspx
Share:

Thursday, December 7, 2017

What is the command to force Knowledge Consistency Checker (KCC) on targeted domain controllers to immediately recalculate the inbound replication topology.

What is the command to force Knowledge Consistency Checker (KCC) on targeted domain controllers to immediately recalculate the inbound replication topology.

  • Repadmin -replicate
  • Repadmin -prp
  • Repadmin -showutdvec
  • Repadmin -kcc 
 
What is the command to force Knowledge Consistency Checker (KCC) on targeted domain controllers to immediately recalculate the inbound replication topology.

EXPLANATION

This command helps repair broken connections between domain controllers by rebuilding the active connection.

SOURCE

https://technet.microsoft.com/en-us/library/cc770963(v=ws.11).aspx



Share:

Thursday, November 23, 2017

Which of the following is an IPV6 automatic tunneling protocol used by Windows on systems located behind a NAT router?

Which of the following is an IPV6 automatic tunneling protocol used by Windows on systems located behind a NAT router?

  • APIPA
  • ISATAP
  • 6to4
  • Teredo
 
Which of the following is an IPV6 automatic tunneling protocol used by Windows on systems located behind a NAT router?

EXPLANATION

Teredo is a mechanism that enables devices behind non-IPv6 NAT routers to function as tunnel endpoints.
For more information on Teredo, see: https://en.wikipedia.org/wiki/Teredo_tunneling
 
Share:

Wednesday, November 22, 2017

With Microsoft Windows, a split-scope DHCP deployment describes which of the following?

With Microsoft Windows, a split-scope DHCP deployment describes which of the following?

  • One server providing a discontinuous address range
  • Two servers, each responsible for dedicated scopes
  • One server providing multiple scopes and settings 
  • Two servers providing addresses from same scope 

With Microsoft Windows, a split-scope DHCP deployment describes which of the following?

EXPLANATION


Split-scope DHCP describes two servers giving away addresses from within the same scope. To avoid conflicts, the scope is cut into segments by adding “exclusion ranges”, so that one DHCP will only hand out addresses the other won’t.

Split-scope DHCP provides redundancy for the network. There is no communication between the DHCPs, so it is not a real failover. Reservations can be created on both servers. Then, in the event that one server fails, the reservation will take effect, even if it is inside the running server's exclusion range.

2012 R2 now offers the more comfortable DHCP-failover clustering, which removes the need for distinct exclusion ranges. Instead, the servers now “talk” to each other and synchronize leases. However, for now no other settings (scope settings, reservations) are synchronized, but there is a PS-script for this as well.
http://www.exitthefastlane.com/2010/09/split-scope-dhcp-in-server-2008-r2.html
Share:

Which of the following is NOT a Windows Server Domain FSMO role?

Which of the following is NOT a Windows Server Domain FSMO role?

  • Schema Master
  • RID Master
  •  Directory Master
  • Domain Naming Master
Which of the following is NOT a Windows Server Domain FSMO role?

 

EXPLANATION

There are 5 Windows Server Domain flexible single master operations (FSMO) roles.
1) Schema Master
2) Domain Naming Master
3) RID Master
4) PDC Emulator Master
5) Infrastructure Master
Directory Master is not a FSMO role.
https://support.microsoft.com/en-us/kb/197132

Share:

Popular Posts