PrepAway - Latest Free Exam Questions & Answers

You need to ensure that RODC1 has a copy of the DNSapplication directory partition of contoso.com

Your network contains an Active Directory forest named contoso.com. The functional level of the forestis
Windows Server 2008 R2
The DNS zone for contoso.com is Active Directory-integrated.
You deploy a read-only domain controller (RODC) named RODC1. You install the DNS Server server role on
RODC1.
You discover that RODC1 does not have any DNS application directory partitions.
You need to ensure that RODC1 has a copy of the DNSapplication directory partition of contoso.com.
What should you do? (Each correct answer presents acomplete solution. Choose two.)

PrepAway - Latest Free Exam Questions & Answers

A.
From DNS Manager, right-click RODC1 and click Create Default Application Directory Partitions.

B.
Run ntdsutil.exe. From the Partition Management context, run the create nc command.

C.
Run dnscmd.exe and specify the /createbuiltindirectorypartitions parameter.

D.
Run ntdsutil.exe. From the Partition Management context, run the add nc replica command.

E.
Run dnscmd.exe and specify the /enlistdirectorypartition parameter.

Explanation:
Practically the same question as J/Q15, different set of answers.
Reference:
http://technet.microsoft.com/en-us/library/cc742490.aspx
RODC Post-Installation Configuration
If you install DNS server after the AD DS installation, you must also enlist the RODC in the DNS application
directory partitions. The RODC is not enlisted automatically in the DNS application directory partitions by
design because it is a privileged operation.If the RODC were allowed to enlist itself, it would have
permissions to add or remove other DNS servers thatare enlisted in the application directory partitions.
To enlist a DNS server in a DNS application directory partition
1. Open an elevated command prompt.
2. At the command prompt, type the following command, and then press ENTER:
dnscmd <ServerName> /EnlistDirectoryPartition <FQDN>
For example, to enlist RODC01 in the domain-wide DNS application directory partition in a domain namedchild.
contoso.com, type the following command:
dnscmd RODC01 /EnlistDirectoryPartition DomainDNSZones.child.contoso.com
You might encounter the following error when you run this command:
Command failed: ERROR_DS_COULDNT_CONTACT_FSMO 8367 0x20AF
If this error appears, use NTDSUTILto add the RODC for the partition to be replicated:
1. ntdsutil
2. partition management
3. connections
4. Connect to a writeable domain controller (not an RODC):
connect to server <WriteableDC>.Child.contoso.com
5. quit
6. To enlist this server in the replication scope for this zone, run the following command:
add NC ReplicaDC=DomainDNSZones,DC=Child,DC=Contoso,DC=Com <rodcServer>.
Child.contoso.com


Leave a Reply