What should you do?

Posted by: Pdfprep Category: 70-411 Tags: , ,

Your network contains an Active Directory domain named contoso.com. The domain contains a domain controller named DC1.

You run ntdsutil as shown in the exhibit. (Click the Exhibit button.)

You need to ensure that you can access the contents of the mounted snapshot.

What should you do?
A . From the snapshot context of ntdsutil, run activate instance "NTDS".
B . From a command prompt, run dsamain.exe -dbpath c:$snap_201204131056_volumec$windows
tds
tds. dit -Idapport 389.
C . From the snapshot context of ntdsutil, run mount {79f94f82-5926-4f44-8af0-2f56d827a57d}.
D . From a command prompt, run dsamain.exe -dbpath c:$snap_201204131056_volumec$windows
tds
tds. dit -Idapport 33389.

Answer: D

Explanation:

By default, only members of the Domain Admins group and the Enterprise Admins group are allowed to view the snapshots because they contain sensitive AD DS data. If you want to access snapshot data from an old domain or forest that has been deleted, you can allow nonadministrators to access the data when you run Dsamain.exe.

If you plan to view the snapshot data on a domain controller, specify ports that are different from the ports that the domain controller will use.

A client starts an LDAP session by connecting to an LDAP server, called a Directory System Agent (DSA), by default on TCP port and UDP [7] port 389. The client then sends an operation request to the server, and the server sends responses in return. With some exceptions, the client does not need to wait for a response before sending the next request, and the server may send the responses in any order. All information is transmitted using Basic Encoding Rules (BER).

References:

http://technet.microsoft.com/en-us/library/cc753609(v=ws.10).aspx

Leave a Reply

Your email address will not be published.