You need to implement a solution for DNS replication.
Which cmdlets should you run?
A . Set-DnsServer and Invoke-DnsServerZoneSign
B . ConvertTo-DnsServerPrimaryZone and Register-DnsServerDirectoryPartition
C . UnRegister-DnsServerDirectoryPartition and Add-DnsServerForwarder
D . Set-DnsServerDnsSecZoneSetting and Invoke-DnsServerZoneSign
Answer: C
Explanation:
Currently DNS zones are replicated to all Domain Controllers, but they should only replicate only to DC1, DC2, and DC3. We can unregister other DNS servers (RODC1) with the help of UnRegister-DnsServerDirectoryPartition cmdlet, which deregisters a Domain Name System (DNS) server from a specified DNS application directory partition.
RODC1 is still used as a DNS server, but does not receive zone replication, but it should still function as a DNS server as all computers need to resolve names by using a local DNS server. We configure RODC1 to forward DNS requests to DC1, DC2 or DC3 with the help of the Add-DnsServerForwarder command.
* Scenario. Technical Requirement related to DNS:
Ensure that all DNS zone data is encrypted when it is replicated
All computers must be able to resolve names by using a local DNS server
All DNS zones must replicate only to DC1, DC2, and DC3
Reference: UnRegister-DnsServerDirectoryPartition, Add-DnsServerForwarder
Leave a Reply