Your network contains an Active Directory forest named contoso.com.
The forest contains two domains named contoso.com and child.contoso.com and two sites
named Site1 and Site2. The domains and the sites are configured as shown in following table.
When the link between Site1 and Site2 fails, users fail to log on to Site2.
You need to identify what prevents the users in Site2 from logging on to the
child.contoso.com domain.
What should you identify?
A.
The placement of the infrastructure master
B.
The placement of the global catalog server
C.
The placement of the domain naming master
D.
The placement of the PDC emulator
Explanation:
The exhibit shows that Site2 does not have a PDC emulator. This is important because of
the close interaction between the RID operations master role and the PDC emulator role
The PDC emulator processes password changes from earlier-version clients and other
domain controllers on a best-effort basis; handles password authentication requests
involving passwords that have recently changed and not yet been replicated throughout the
domain; and, by default, synchronizes time. If this domain controller cannot connect to the
PDC emulator, this domain controller cannot process authentication requests, it may not be
able to synchronize time, and password updates cannot be replicated to it.
Incorrect answers:
A: The global catalogue server role placement is not the issue.
C: The PDC emulator role, not the infrastructure master role will process authentication
requests that will allow logging on for the Site2 users.
D: The domain naming master role is not the role that prevents Site2 users from logging on
to the child domain.References:
http://technet.microsoft.com/en-us/library/dd391870(v=ws.10).aspx
http://technet.microsoft.com/en-us/library/cc773108(v=ws.10).aspx
I believe the correct answer is B
The answer is D:
http://support2.microsoft.com/kb/223346/en-us says
PDC role:
Receives password updates when passwords are changed for the computer and for user accounts that are on replica domain controllers.
Consulted by replica domain controllers that service authentication requests that have mismatched passwords.
=> Means if the role isn’t available in your site, your users won’t be able to log on.
The question does not mention password changes, just logons (authentication). The PDC is responsible for ALL PASSWORD CHANGES in the domain. Here, they are just asking about
See more: http://www.aiotestking.com/microsoft/what-should-you-identify-41/
Cannot be D. The GC must be online per site otherwise a login is not possible:
https://support.microsoft.com/en-us/kb/296882
“If a global catalog is not available when a user initiates a network logon process, the user can log on only to the local computer. There must be a global catalog server available so that users can log on and locate Active Directory resources. We recommend that you have at least one global catalog server per site to speed up these processes.”
The correct answer is B (global catalog).
Global catalog is a active directory partition that replica users and group in only global catalog around the domain, and in only site, then help you to log in another site in case that the link between site 1 and site 2 fail.
B is the correct. To log on is imperative a GC. Without a GC a client cannot log on anyway.