The RID Master holds the global RID pool for the domain. The size is limited to 30-bits by default, so the maximum RID size is 2 to the power of 30, or about one billion. The RID Master assigns each Domain Controller a pool of RIDs to use for SID creation. By default, DCs are assigned 500 contiguous RIDs at a time and request a standby pool containing another 500 RIDs when they have used 50% of their original allocation.
If a RID master is not online, the DC promotion cannot complete.
PDC is role that does not have much of a relevance today, it was much more important in pre-2000 environment.. It gets all newest passwords for users and computers, is primary time sync partner and has final say in authentications and lockouts but that is it, it is not needed for promotion of new DC
Selected Answer: A
RID Domain - Allocates active and standby RID pools to replica domain controllers in the same domain.
- Must be online in the following situations:
when newly promoted domain controllers must obtain a local RID pool that's required to advertise
when existing domain controllers must update their current or standby RID pool allocation.
The correct answer is C:
Only an active Domain Naming Master can add, remove, and update domains within AD.
Ref: https://www.31west.net/blog/what-are-the-roles-of-active-directory/#:~:text=Another%20forest%2Dlevel%20role%20in,assigned%20to%20a%20single%20DC.
Schema master : responsible for the schema = NO
Domain naming master :
DCs contact the FSMO role holder when:
Domains are added or removed in the forest.
New instances of application directory partitions on DCs are added. For example, a DNS server has been enlisted for the default DNS application directory partitions. = YES
RID master : Give SID and RID to other DC = NO
PDC emulator : time master + The PDC emulator performs all of the functionality that a Windows NT 4.0 Server-based PDC or earlier PDC performs for Windows NT 4.0-based or earlier clients. = YES
Infrastructure master : relation with external domains = NO
DC2 holds both roles ==> B
https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/fsmo-roles
In this link, explain that Domain Naming Master is necessary for DCPROMO wizard. Join and unjoin a new domain controller
:https://convergenttechonline.com/news/effects-of-losing-an-operations-master-fsmo-role-holder-in-relation-to-an-active-directory-forest-andor-domain/
So, the correct answer is C
right, RID Master should be online.
here is link from Microsoft:
https://learn.microsoft.com/en-us/troubleshoot/windows-server/active-directory/fsmo-placement-and-optimization-on-ad-dcs
RID Domain - Allocates active and standby RID pools to replica domain controllers in the same domain.
- Must be online in the following situations:
when newly promoted domain controllers must obtain a local RID pool that's required to advertise;
when existing domain controllers must update their current or standby RID pool allocation.
I'd say DC1 for the RID role: when newly promoted domain controllers must obtain a local RID pool that's required to advertise. We're only adding a DC, not creating a new domain in the forest so the Domain Naming Master can be offline. Source:
https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/fsmo-placement-and-optimization-on-ad-dcs
Follow these general steps before you promote a server to a DC that runs a newer version of Windows Server:
Verify the target server meets the system requirements.
Verify application compatibility.
Review recommendations for moving to a newer version of Windows Server.
Verify security settings.
Check connectivity to the target server from the computer where you plan to run the installation.
Check for availability of the necessary Flexible Single Master Operation (FSMO) roles in Active Directory. This step is required for the following scenarios:
To install the first DC that runs the latest Windows Server version in an existing domain and forest, the machine where you run the installation needs connectivity to:
The schema master to run adprep /forestprep.
The infrastructure master to run adprep /domainprep.
https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/deploy/upgrade-domain-controllers
So answer A
This section is not available anymore. Please use the main Exam Page.AZ-801 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Leocan
Highly Voted 1 year, 11 months agoGoforIT21
Highly Voted 2 years, 1 month agoProfileX
2 years, 1 month agoscribe
1 year, 10 months agoscribe
1 year, 10 months agoBlackCat9588
Most Recent 3 months, 1 week agoHull1
1 month, 2 weeks agoahenriquez02
5 months, 2 weeks agojanshal
7 months, 3 weeks agoLeoanetor
11 months, 1 week agoTroy06
11 months, 3 weeks agoFormaPlom
1 year agoEdHuisman
1 year agomakonmakon
7 months, 3 weeks agoneusaap
1 year agotomasek88
1 year, 3 months agotomasek88
1 year, 3 months agoala76nl
1 year, 4 months agoraulgar
1 year, 6 months agotomasek88
1 year, 3 months agosyu31svc
1 year, 6 months agokijken
1 year, 8 months agoTelekon
1 year, 8 months ago