Active Directory 面接の質問と回答
質問 26. Explain the concept of Organizational Units (OUs) in Active Directory.
Organizational Units (OUs) are containers within domains that allow administrators to organize and apply Group Policies to sets of users, groups, and computers. OUs provide a way to delegate administrative authority within a domain.
Example:
An organization might have separate OUs for different departments, each with its own set of Group Policies and administrative permissions.
質問 27. How does Active Directory handle DNS integration?
Active Directory relies heavily on DNS for name resolution and service location. It uses DNS to locate domain controllers, discover services, and perform various tasks related to directory services.
Example:
When a client needs to locate a domain controller, it queries DNS to find the necessary information about the domain and its services.
質問 28. What is the purpose of the Time Server role in Active Directory?
The Time Server role, or Windows Time service (W32Time), in Active Directory is responsible for synchronizing time across all domain-joined computers. It ensures that time-sensitive operations, such as authentication and replication, occur accurately.
Example:
Synchronized time is crucial for Kerberos authentication and maintaining consistency in distributed environments.
質問 29. Explain the concept of Fine-Grained Password Policies in Active Directory.
Fine-Grained Password Policies allow administrators to define different password policies for different sets of users within a domain. This provides more flexibility in enforcing password requirements for various user groups.
Example:
Administrators can apply stricter password policies for privileged accounts while allowing less restrictive policies for other user accounts.
質問 30. What is the purpose of the Read-Only Domain Controller (RODC) in Active Directory?
An RODC is a domain controller that holds a read-only copy of the Active Directory database. It enhances security by allowing organizations to deploy domain controllers in locations where physical security cannot be guaranteed.
Example:
In branch offices with limited physical security, an RODC can be deployed to provide authentication services without risking the exposure of sensitive information.
ユーザー評価で最も役立つ内容:
- What is Active Directory?
- Explain the difference between a domain and a workgroup.
- What is LDAP and how does it relate to Active Directory?
- Explain the purpose of the Infrastructure Master role.