Review Questions and Answers

Previous page
Table of content
Next page

1. 

You have just set up a new Solaris network and you are going to use LDAP as your naming service. On the LDAP server, you have created one profile named client. The name of the LDAP server is server1, and its IP address is 10.0.0.1. Which of the following commands do you use to set up a computer named comp1 with an IP address of 10.0.0.22 as an LDAP client?

  1. ldapclient init 10.0.0.1

  2. ldapclient init server1

  3. ldapclient init 10.0.0.22

  4. ldapclient init comp1

  5. ldapclient init client

a. the ldapclient command is used to set up computers to be ldap clients. if there is only one profile on the ldap server, you do not need to specify the profile name. the init option tells ldapclient to use a profile, and then the ip address (not the name) of the server is specified.

2. 

You are the network administrator for your company. You are going to implement a naming service to be used throughout the company. The naming service needs to be scalable to accommodate future expansion. Which of the following naming services use a hierarchical naming structure, making future expansion of your network easier to manage? (Choose all that apply.)

  1. local files

  2. FNS

  3. LDAP

  4. DNS

  5. NIS

  6. NIS+

b, c, d, f. looking at all of the available naming services in solaris, only local files and nis use a flat naming scheme. all of the other naming services (fns, ldap, dns, and nis+) use a hierarchical naming system.

3. 

You are the Solaris network administrator for your company. You have just configured a computer named server1 to act as the NIS master server. Now, you are at server2 and want to make it a NIS slave server. Which of the following commands do you execute first to begin the slave setup process?

  1. ypinit -c

  2. ypinit -s server1

  3. ypinit -s server2

  4. ypinit -m

a. to set up a computer as a nis slave, it first must be set up as a nis client. therefore, the first command you must run is ypinit -c . after that is complete, and you have restarted the ypbind service, then you can run the ypinit -s master command.

4. 

On your Solaris network, all computers use local hosts files for computer name resolution. You want to replace the hosts files with a centralized service that can provide the same functionality. Which of the following name services was designed specifically for this function?

  1. NIS+

  2. NIS

  3. LDAP

  4. DNS

d. although all of the services listed can resolve host names to ip addresses, only dns was specifically designed for this purpose. dns was created to replace hosts files.

5. 

You are the Solaris administrator for your network. The network uses NIS as its only naming service. You have just created a new map on the NIS master server and now want to push the map to your slave server. You run the yppush command, but the process fails. You cannot find the new map on the slave server. At the command line, you ping the slave server and receive a response. What is the most likely reason the push failed?

  1. You must run the yppush command from the slave server instead of the master server.

  2. You cannot use yppush to push a map to a slave if the slave doesn't have an existing copy of the map.

  3. You need to run the ypxfr command from the master server to push the map to the slave server.

  4. The network connection between the master server and slave server is not functioning properly.

b. the yppush command, run from the master server, pushes copies of maps to slave servers. however, the yppush command will not work for maps that do not already exist on the slave servers. the ypxfr command pulls maps and is the command you need to run in this case. it must be run from the slave server, though. although it's possible that the network connection is not working properly, it's unlikely, considering that a ping between the two computers was successful.

6. 

You have configured NIS on your Solaris network, and it is functioning properly. You are briefing other administrators on how NIS works, and one of the administrators asks a question about server communication. Which of the following daemons is responsible for initiating and maintaining communications between the NIS server and NIS client?

  1. ypserv

  2. ypbind

  3. ypinit

  4. ypxfr

b. the ypbind daemon is responsible for establishing communications. that process is called binding. the ypserv daemon is responsible for finding information in the nis database, and the ypxfr daemon handles map transfers. ypinit is a command used to set up nis servers and clients, not a daemon.

7. 

You are configuring your Solaris network to use DNS as its naming service. Which of the following files specific to DNS must be created and configured on client machines?

  1. /etc/nsswitch.conf

  2. /etc/dns.conf

  3. /etc/resolv.conf

  4. /etc/in.named

c. the resolver, resolv.conf , must be on each dns client computer. each computer also needs an nsswitch.conf file, but that file is not specific to the dns service. the dns.conf file does not exist. in.named is the daemon that runs on the dns server.

8. 

You are creating a custom map file called clients.byname for your NIS domain. You want to be able to create the map and easily update the new map at the same time as other maps are updated. Which file do you modify to make an entry for the new map?

  1. /var/yp/make

  2. /var/yp/makedbm

  3. /var/yp/mapfile

  4. /var/yp/makefile

d. the makefile file contains listings of all the maps. if you create an entry in the new map for makefile , the new map will be remade every time you run the make command.

9. 

You are the Solaris administrator for your network. You want to ensure that the information in all NIS maps located on your four NIS slave servers is current on a daily basis. What is the easiest way to accomplish this?

  1. Edit the root crontab file on each slave server, and include the ypxfr command to pull changed maps at midnight each night.

  2. Edit the root crontab file on the master server, and include the ypxfr command to push changed maps at midnight each night.

  3. Use the ypxfr -a -u 100 command on the server to initiate a map transfer at one o'clock each morning.

  4. Instruct the night operator to run the ypxfr command from each slave server each night at or around midnight as part of his nightly duties.

a. you can help ensure map consistency by using the root crontab file on each slave server. include the ypxfr command to pull maps at specified intervals. the command ypxfr -a -u 100 might sound good, but it was made up.

10. 

You are the Solaris administrator for your network. Until recently, all client computers on your network were using local /etc files for name resolution. Now, you are implementing LDAP as your name resolution method. Which file do you need to edit on your client computers to instruct them to use the LDAP server instead of local /etc files?

  1. /etc/ldap.conf

  2. /etc/resolv.conf

  3. /etc/nameres.conf

  4. /etc/nsswitch.conf

d. the name service switch file, nsswitch.conf , is the file you need to edit to make the computers look for the ldap server. the ldap.conf and nameres.conf files do not exist. the resolv.conf file is used only with dns. when you set up ldap clients with the ldapclient command, ldapclient automatically configures your nsswitch.conf file for you.

11. 

You are configuring your Solaris network to use LDAP as its naming service. Because of security concerns, you want the user's login as well as all communication with the LDAP server to be secure. Which option do you need to properly configure in the client LDAP profile?

  1. securityMethod

  2. authenticationMethod

  3. credentialLevel

  4. cn

b. the authenticationmethod attribute is the proper answer. because you want all communications to be secure, you should use tls, and probably sasl/digest-md5 or sasl/cram-md5 . the credentiallevel attribute is used if your network is using a proxy server. the cn attribute is the profile name. there is no securitymethod attribute.

12. 

You are the Solaris administrator for your network. You want to manually propagate maps from the NIS master server to NIS slave servers. Which of the following commands enable you to accomplish this? (Choose all that apply.)

  1. ypxfr run from the master server

  2. ypxfr run from the slave server

  3. yppush run from the master server

  4. yppush run from the slave server

b, c. the ypxfr command initiates a map pull and therefore must be executed from the slave server. the yppush command pushes maps and is executed from the master server.

13. 

Consider the following example from an nsswitch.conf file:

 passwd:      files nis group:       files nis hosts:       dns nis [NOTFOUND=return] files netmask:     files

Which of the following statements regarding the example are true? (Choose all that apply.)

  1. For user login information, the local /etc files will be consulted before the NIS server.

  2. To determine group membership, the NIS server will be consulted before the local /etc files.

  3. When attempting to resolve a computer name to an IP address, the DNS server will be consulted first, followed by the NIS server. If the NIS server cannot find the information, local /etc files will be consulted.

  4. When attempting to resolve a computer name to an IP address, the DNS server will be consulted first, followed by the NIS server. If the NIS server is not available, local /etc files will be consulted.

a, d. for login information, the passwd: key is consulted, which says to look at the local /etc files first, then nis. group information is configured the same way. the hosts: key determines host name lookup. the dns server will be consulted first, and if no resolution is made, nis will be consulted. however, if the nis server cannot find the information ( [notfound=return] ), the process will stop. if the nis server is unavailable (which would return an unavail message, not notfound ), then the local /etc files will be consulted.

14. 

Your network uses the LDAP naming service for name resolution. All network workstations are configured with the default profile to use LDAP. One of your workstations is going to be moved to a remote office that does not use LDAP. At the remote office, they use local files for name resolution, which is what you used to use. What is the recommended way to reconfigure the workstation to use local files instead of LDAP so that it's properly configured when it's moved?

  1. Delete the nsswitch.conf file and run cp nsswitch.files nsswitch.conf.

  2. Delete the nsswitch.conf file and run cp nsswitch.etc nsswitch.conf.

  3. Run the ldapclient uninit command on the workstation.

  4. Reinstall Solaris 9 on the workstation.

c. the ldapclient uninit command will remove the client configuration for the ldap service and return the computer to the naming service client state it was in before the ldap service was introduced. you could also rename the nsswitch.files template to nsswitch.conf . however, running ldapclient uninit is recommended. the nsswitch.etc file does not exist, and reinstalling solaris is unnecessary.

15. 

You are the Solaris administrator for your network. You believe that the NIS service is mis-behaving on the NIS master server, and you want to stop and restart the NIS service. Which command do you issue to stop the NIS service on the NIS master server?

  1. /usr/lib/netsvc/yp/stop

  2. /usr/lib/netsvc/yp/ypstop

  3. /usr/lib/netsvc/yp stop

  4. /usr/lib/netsvc/yp/nisstop

b. the /usr/lib/netsvc/yp/ypstop command is used to stop the nis service. running the ypstart command in the same directory will restart the nis service.

16. 

One of your network users is having trouble logging into the network. Your network uses NIS to validate user login requests. You suspect that the NIS server that the client computer is bound to does not have the most current version of the NIS passwd.byname map. Which of the following commands can you run to show you the map version number?

  1. yppoll passwd.byname

  2. ypcat passwd.byname

  3. ypmatch passwd.byname

  4. ypwhich passwd.byname

a. the yppoll command will display an order number (synonymous with a version number) of the map specified. you can compare this to the order number of the map taken from the nis master server.

17. 

You are configuring NIS on your network. You have just installed a NIS master server, and stopped and restarted NIS. Which two of the following daemons must be running on the NIS server to provide functionality to client computers? (Choose two.)

  1. ypxfr

  2. ypbind

  3. ypserv

  4. rpc.ypupdated

b, c. all four of the provided answers are valid nis daemons. however, the only two that are required to run nis and provide functionality to clients are ypbind and ypserv .

18. 

You are configuring a NIS slave server in your NIS domain. Which of the following statements are true regarding the slave server creation process? (Choose all that apply.)

  1. When the NIS slave server is created, the maps are automatically propagated from the NIS master server.

  2. When the NIS slave server is created, the maps must be manually copied from the NIS master server.

  3. NIS slave servers must be set up first as NIS master servers and then as NIS slave servers.

  4. NIS slave servers must be set up first as NIS clients and then as NIS slave servers.

  5. A NIS slave server is created with the ypinit -s master command.

a, d, e. to create a nis slave server, you must first make the computer a nis client with the ypinit -c command. then after restarting ypbind , you make the computer a slave server with the ypinit -s command. when you make a computer a nis slave server, the maps are pulled automatically from the nis master server.

19. 

You are creating a custom map for your NIS domain. The source file is in ASCII format. Which command do you run to create map files from this source file?

  1. make

  2. makedbm

  3. makemap

  4. makefile

b. to create maps that have an ascii source file, use the makedbm command. the make command is for maps that have entry in makefile . the makemap command does not exist.

20. 

You are configuring the name service switch file on all computers on your network. When configuring the file, what is the limit to the number of services that you can specify per key?

  1. One

  2. Two

  3. Three

  4. You can specify all of the naming services you have available.

d. there is no hard-coded limit. realistically, though, it's unlikely you'll have more than three options on your network (local files, dns, and nis or nis+ as an example).

Answers

1. 

A. The ldapclient command is used to set up computers to be LDAP clients. If there is only one profile on the LDAP server, you do not need to specify the profile name. The init option tells ldapclient to use a profile, and then the IP address (not the name) of the server is specified.

2. 

B, C, D, F. Looking at all of the available naming services in Solaris, only local files and NIS use a flat naming scheme. All of the other naming services (FNS, LDAP, DNS, and NIS+) use a hierarchical naming system.

3. 

A. To set up a computer as a NIS slave, it first must be set up as a NIS client. Therefore, the first command you must run is ypinit -c. After that is complete, and you have restarted the ypbind service, then you can run the ypinit -s master command.

4. 

D. Although all of the services listed can resolve host names to IP addresses, only DNS was specifically designed for this purpose. DNS was created to replace hosts files.

5. 

B. The yppush command, run from the master server, pushes copies of maps to slave servers. However, the yppush command will not work for maps that do not already exist on the slave servers. The ypxfr command pulls maps and is the command you need to run in this case. It must be run from the slave server, though. Although it's possible that the network connection is not working properly, it's unlikely, considering that a ping between the two computers was successful.

6. 

B. The ypbind daemon is responsible for establishing communications. That process is called binding. The ypserv daemon is responsible for finding information in the NIS database, and the ypxfr daemon handles map transfers. ypinit is a command used to set up NIS servers and clients, not a daemon.

7. 

C. The resolver, resolv.conf, must be on each DNS client computer. Each computer also needs an nsswitch.conf file, but that file is not specific to the DNS service. The dns.conf file does not exist. in.named is the daemon that runs on the DNS server.

8. 

D. The makefile file contains listings of all the maps. If you create an entry in the new map for makefile, the new map will be remade every time you run the make command.

9. 

A. You can help ensure map consistency by using the root crontab file on each slave server. Include the ypxfr command to pull maps at specified intervals. The command ypxfr -a -u 100 might sound good, but it was made up.

10. 

D. The name service switch file, nsswitch.conf, is the file you need to edit to make the computers look for the LDAP server. The ldap.conf and nameres.conf files do not exist. The resolv.conf file is used only with DNS. When you set up LDAP clients with the ldapclient command, ldapclient automatically configures your nsswitch.conf file for you.

11. 

B. The authenticationMethod attribute is the proper answer. Because you want all communications to be secure, you should use TLS, and probably sasl/digest-MD5 or sasl/cram-MD5. The credentialLevel attribute is used if your network is using a proxy server. The cn attribute is the profile name. There is no securityMethod attribute.

12. 

B, C. The ypxfr command initiates a map pull and therefore must be executed from the slave server. The yppush command pushes maps and is executed from the master server.

13. 

A, D. For login information, the passwd: key is consulted, which says to look at the local /etc files first, then NIS. Group information is configured the same way. The hosts: key determines host name lookup. The DNS server will be consulted first, and if no resolution is made, NIS will be consulted. However, if the NIS server cannot find the information ([NOTFOUND=return]), the process will stop. If the NIS server is unavailable (which would return an UNAVAIL message, not NOTFOUND), then the local /etc files will be consulted.

14. 

C. The ldapclient uninit command will remove the client configuration for the LDAP service and return the computer to the naming service client state it was in before the LDAP service was introduced. You could also rename the nsswitch.files template to nsswitch.conf. However, running ldapclient uninit is recommended. The nsswitch.etc file does not exist, and reinstalling Solaris is unnecessary.

15. 

B. The /usr/lib/netsvc/yp/ypstop command is used to stop the NIS service. Running the ypstart command in the same directory will restart the NIS service.

16. 

A. The yppoll command will display an order number (synonymous with a version number) of the map specified. You can compare this to the order number of the map taken from the NIS master server.

17. 

B, C. All four of the provided answers are valid NIS daemons. However, the only two that are required to run NIS and provide functionality to clients are ypbind and ypserv.

18. 

A, D, E. To create a NIS slave server, you must first make the computer a NIS client with the ypinit -c command. Then after restarting ypbind, you make the computer a slave server with the ypinit -s command. When you make a computer a NIS slave server, the maps are pulled automatically from the NIS master server.

19. 

B. To create maps that have an ASCII source file, use the makedbm command. The make command is for maps that have entry in makefile. The makemap command does not exist.

20. 

D. There is no hard-coded limit. Realistically, though, it's unlikely you'll have more than three options on your network (local files, DNS, and NIS or NIS+ as an example).



Previous page
Table of content
Next page
Solaris 9. Sun Certified System Administrator Study Guide
Solaris 9 Sun Certified System Administrator Study Guide
ISBN: 0782141811
EAN: 2147483647
Year: 2003
Pages: 194
Authors: Quentin Docter
BUY ON AMAZON
Metrics and Models in Software Quality Engineering (2nd Edition)
Snort Cookbook
Secure Programming Cookbook for C and C++: Recipes for Cryptography, Authentication, Input Validation & More
Service-Oriented Architecture (SOA): Concepts, Technology, and Design
Persuasive Technology: Using Computers to Change What We Think and Do (Interactive Technologies)
Programming .Net Windows Applications
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy