| 70-218
"What to know" Checklist!
Installation:
O How do you add additional SCSI drivers during installation of
Windows 2000, and why would you?
O How should you modify your BOOT.INI file when you have mirrored
drives?
O Know what operating systems support which file systems.
O Know the pros and cons of the file systems: FAT, FAT32, NTFS, NTFS
v.5
O Know the difference between Standard, EPP / ECP printer ports.
O How can you install service packs into Windows 2000 before
installation on a computer?
O What is a slipstream install? What steps are involved? ( UPDATE.EXE
-S:D:\Dir\Win2K)
(burn back to CD)
Troubleshooting:
O How do you install recovery console on a computer?
O How can you run recovery console if you did not install it on a
computer?
O Know how to disable a service in recovery console, how do you run
it?
O Know how to fix the Master Boot Record, how do you run it? (FIXMBR)
O Know how to read a multi-processor graph in Task Manager.
O How and when should you use the last known good configuration?
O Know when to use save mode (How can you boot past a network card
driver that locks the system)
O What is a parallel (not port) backup/recovery? Why would you do
it?
O Know when to use Recovery Console, Safe mode, or Last known
Configuration!
System Maintenance:
O Where can you set application priority? (Task Manager and
Command Line)
O What application priorities should you use? (Always lower)
O How can you set processor affinity? (Which processor runs an
application)
O What should you do when a server becomes fragmented?
O How do your servers become fragmented?
O What is a Hot Fix?
O What is HFNETCHK.EXE?
System Config-Identify a stalled process in task manager, use the NET STOP 1121
(<--PID)
System
Config-Q259283 - File signature verification tool - res: Q222193 - Win 2000
file protection feature
Service Configuration:
O How to install DFS (Distributed File System) Read article: Q241452
O How do you establish quotas on a drive? What can go wrong in
config?
O What does a quota actually limit?
O How do you block the installation of unsigned drivers locally? on
the domain? Know the screen!
O What happens when you block unsigned drivers locally and don't
Apply settings as system default.
O How can you mount a drive as a folder on another volume? Steps?
Why would you?
Performance:
O What is acceptable for Avg. Disk trans/ sec. counter? In
what object is it found?
O What is the acceptable range for Avg. Pages/Sec. counter? In what
object is it found?
O What do you do with a processor at 100% and excessive page faults?
O How do you create performance alerts? What services must be
running on the server and client?
Q244640: Alerter and messenger
service on source and just messenger on receiver - alerter is not started by
default on W2K Pro, but is on server
System Config-Identify when memory usage is more than actual memory used 754MB, RAM
128MB
Security:
O What is the difference between share and NTFS permissions?
O What does the Deny permission mean?
O Users > Global Groups > Domain Local Groups >
Resources.
O Know that Encryption has NOTHING to do with NTFS or Share
security.
O Why should you not share encrypted files / folders?
O What steps are taken to give one user or group priority printer
access?
O What steps are taken to give one user or group time restrictions
on a printer?
O What different permissions can be assigned at a printer? Who is
the default for each?
O Sharing a printer auto publishes it in Active Directory.
O In what object's properties would you go to
establish a quota?
O How can you apply two different quotas on two different shares on
a single server?
networking-UGLR
and concepts of share entry points.
System Config-Choose between upgrading RAM, MEM, HDD or NIC based on performance
Networking:
O How many users can map a drive to a share on a Windows 2000
Professional computer?
O Know how to troubleshoot basic network issues like: New
Client can't reach existing server. Which is bad?
O How do you identify if a problem is IP configuration or name
resolution?
O How do you configure Internet Connection Sharing? What are the
adapter settings?
O How can you create and use a hidden share? (Create
a Hidden share by adding $ to the end of the name.)
O Why can you see a share published in Active Directory, but not in
Network Neighborhood? (hidden)
Network Services:
O Know how to set up WINS
replication partners, and why!
O When do you need WINS? When do you need DNS? When do you need
both?
O How do you get WINS and DNS to work together?
O Know how name resolution works on Windows 98 -vs- Windows NT -vs-
Windows 2000
O Understand BOOTP
forwarding / RFC1542 compliance and the benefit.
O How do you use
a TRACERT command to find a down link?
O PATHPING
and TRACERT also detect trip times! How does this help you?
O How do you use
the ARP command seconds after a NIC swap to update MAC table?
IP Configuration:
O Know how to identify correct Subnet Masks (by looking at other computers)
O Know how to identify correct IP address, Subnet Mask and Default
Gateway assignment for a new client.
O Routing between subnets (Why and how)
O Be prepared to identify the correct subnet mask for a subnet from a diagram
O Identify a default gateway from a diagram and TCP/IP properties.
(it's the router!)
O When would you IPCONFIG /FLUSHDNS use on a DNS client
O If client is DHCP for IP, make client DHCP for DNS (TCP/IP
properties)
O Identify APIPA addresses and the cause: 169.254.xxx.xxx
O How do you configure clients for dynamic DNS: Windows 2000?
Windows 98? Windows NT?
O Which clients register with DNS through DHCP? (95, 98, NT, 2K,
XP)
O Who can Authorize DHCP servers in a domain? (Enterprise Admins)
O What happens to a DHCP server that is not authorized?
O IPCONFIG /Registerdns. When would you need to use it?
DNS Servers:
O Why not to make your DNS server a DHCP Client.
O What is DNS Forwarding? How do you set it up, and why?
O What must be configured on a Multihomed
DNS server, configuring NICs for use?
O Know the difference: Active Directory DNS vs. BIND DNS
services.
O What are the advantages of Active Directory Integrated zones?
O Where can you install Active Directory integrated zones? ( only on Domain Controllers)
O What must you consider when using BIND DNS in an
Active Directory environment?
O On DNS server where is the cache flushed/ ( in DNS console.)
O How can you configure multiple zones on one DNS server (like
acme.com and acme.net)
O Primary zone server is authoritative for zone. What if there's two
primaries?
O Use a CNAME (how why) Q308163 - Configure Host Headers in IIS
O When no DNS solution is available, use a HOSTS file. How to you
configure a HOSTS file?
O RAS Client resolves local names, but not internet. Config an internet
DNS
DNS
Services-Bad DNS entry: make ADI zone, only secure updates, fix bad entry
Active Directory
O How do you give permissions to users in other domains (what groups
from where?).
O What users can add up to ten computers to a domain by default? Q251335
O Understand GPO permissions for Delegation of Authority to OUs
O How do you stop a policy from applying to the administrator of an
OU?
O How do you assign the Reset Passwords right on an OU?
O How can you Separate departments by OUs
O Know how to pre-stage computer accounts in domain. Why would you
do this?
O Publishing a shared folder in Active Directory has nothing to do
with permissions. Read: Q234582
O Each computer also has a local administrator account.
O How do you add a domain user to the LOCAL admin group on a server?
O How can you do a Authoratative Restore of a single user? Turn off Kerberos
Pre-Authentication.
O What Permissions required to create a GPO for a OU: 111
O Know the difference: Distribution Groups vs Security Groups
O Group Nesting (UGGLR) requires Native mode (like Univ Groups)
O How can you give permissions to only add computer accounts into a specific
OU?
O Why would you use the delegation of control wizard to add control to
AD
O When you use the delegation of control wizard, how do you remove control? ( use properties
to remove.)
O User can't log on because AD replication hasn't happened yet.
Explain.
Win 9x clients need AD Client and WINS to locate printers from Start
> Search
Terminal Services session settings in ADU&C account settings.
Group Policies:
O Deploying
an Update.msi
O Policy
inheritance and blocking
O Password
policies can only be applied to the domain level
O Understand the concept of group policy inheritance.
O How do you block a domain policy from applying to an OU?
O Understand group policy inheritance blocking and no override
features.
O What does the -secedit /refreshpolicy do? why would you add
the /enforce switch ?
O Can one domain inherit a group policy from a parent domain ?
(no)
O How can you apply a password policy to an entire forest ?
(apply the policy to each domain)
O A group policy object
cannot be linked to a container, only to a OU.
O How
do you deploy an application using AD GPO?
O How do you force the uninstall of an
application using a Microsoft installer policy.
(Uninstall this application when it falls
out of the scope of management check box)
O Where in a group policy object can you prevent of the use of
offline files?
O What is the default group policy object setting for the log on
locally user right assignment.
O How can you assign GPO
to only one user or group?
O What is the difference between publishing and assigning an
application?
O What steps must you take to audit all files deleted it in a given
directory?
O What steps must be taken to audit all file access by a given user
on a given server?
O How would you set up an OU so that all servers added in future have a policy applied.
-Apply
multiple policies through an Domain/OU structure & one GPO to many OU.
Remote Access:
O RAS and RADIUS using IAS
O What must be configured on the dialup client to establish a Multilink connection?
O What must be configured on the server to established
a Multi link connection?
O what additional service is necessary to terminal server to run an
application mode?
O Terminal server in application mode gives you
90 days, then fails. Why?
O What the protocol is generally used to secure windows dial up
connections?
O Do whatever protocols are used to secure it windows of the VPN
connections?(PPTP L2TP)
O What is the relationship between L2TP and IPSec?
O What protocol is required and to use smart card authentication?
EAP - TLS
O What is the purpose of the MPPE protocol?
O where to go to show the user's session on a terminal server?
O How do you configure ICS / Clients IP settings?
O How do you edit a dial-in profile to enable MSChap2 and Strong Encryption (know
the screen)
O Ensure automatic dialing is configured when using ICS.
O VPN through Dial-up needs the internet connection established first
O Windows 98 has no EAP support, but can use MS-CHAP
O Effects of Idle time setting and session time on users and demand
dial (know the screen)
Web Services:
O Know the steps required to configure host headers on a web
server and on the DNS server.
O ISAPI Applications are executables (not
scripts), and require execute permissions.
O Know each of the different Authentication methods for accessing documents in IIS.
O What user account must have log on locally rights to the web
server? (anonymous user)
Click for Details
O understand the purpose of the "Send detailed ASP error messages" check box.
O Understand the steps for Setting up SSL with IIS 5 and Cert Srv 2.0
Q299525
O host headers:
Q308163
O DNS Server setup with IIS
Q315982
O Causes: Start web site: Service could not be started because it is not
properly configured
O What to do on both client and server to access a site on alternate
port number.
|
