Active Directory Interview Questions and Answers
Ques 1. How does Active Directory handle tombstone objects?
Tombstone objects are deleted objects that are retained in Active Directory for a specific period before being permanently removed. This period is known as the tombstone lifetime. Tombstone objects help ensure proper replication of deletions across all domain controllers.
Example:
When an object is deleted, it becomes a tombstone, and all domain controllers eventually replicate the deletion to maintain consistency.
Ques 2. Explain the purpose of the Active Directory Recycle Bin feature.
The Active Directory Recycle Bin is a feature that allows administrators to restore deleted objects, including user accounts, groups, and OUs, without the need to perform authoritative or non-authoritative restores.
Example:
If an administrator accidentally deletes an important user account, it can be easily recovered using the Active Directory Recycle Bin.
Ques 3. What is the purpose of the Global Catalog in a multi-domain environment?
In a multi-domain environment, the Global Catalog provides a unified view of objects across all domains in the forest. It facilitates searches for objects without the need to contact each domain individually.
Example:
When searching for a user across multiple domains, the Global Catalog allows quick and efficient retrieval of information.
Ques 4. Explain the concept of Forest Functional Levels in Active Directory.
Forest Functional Levels define the set of features and capabilities available in an Active Directory forest. By raising the forest functional level, administrators can enable new features and retire older domain controllers that do not support the selected functional level.
Example:
Raising the forest functional level might enable features like the Active Directory Recycle Bin or advanced authentication mechanisms.
Ques 5. What is the purpose of the Site in Active Directory?
A Site in Active Directory represents a physical location in the network, such as an office or data center. Sites help optimize network traffic and replication by grouping domain controllers based on their physical proximity.
Example:
In a large organization with multiple offices, administrators can define sites to improve the efficiency of replication and authentication.
Most helpful rated by users:
- What is Active Directory?
- Explain the difference between a domain and a workgroup.
- What is LDAP and how does it relate to Active Directory?
- Explain the purpose of the Infrastructure Master role.