LPI 300-300 Exam Practice Test Instant Access

Question 1

Which of the following commands open NFSv4 ACLs in an editor? (Choose two.)

Anfs4_setfacl -e

Bnfs4_editfacl

Cnfs4_stat -e --acl

Dnfs4_chmod -i

Enfs4_conf

Answer : A, B

To open NFSv4 ACLs in an editor, the following commands can be used:

nfs4_setfacl -e: This command is used to set NFSv4 ACLs, and the -e option opens the ACLs in an editor for modification. The command usage is:

This opens the ACL editor where the user can modify the ACLs for the specified file.

nfs4_editfacl: This command is a more intuitive way to edit NFSv4 ACLs directly in an editor. It provides a user-friendly interface for managing ACLs.

NFSv4 ACL Tools Documentation

NFSv4 ACLs

Question 2

Given a proper network and name resolution setup, which of the following commands establishes a trust between a FreeIPA domain and an Active Directory domain?

Atrustmanager add --domain ad://addom --user Administrator -w

Bipa-ad --add-trust --account ADDOM\Administrator --query-password

Cnet ad ipajoin addom -U Administrator -p

Dipa trust-add --type ad addom --admin Administrator --password

Eipa ad join addom -U Administrator -W

Answer : D

To establish a trust between a FreeIPA domain and an Active Directory domain, the correct command is ipa trust-add. This command is used to add a trust relationship with an Active Directory (AD) domain. The --type ad specifies the type of the trust, addom is the domain name, --admin Administrator specifies the AD administrator account, and --password prompts for the administrator's password.

The complete command looks like this:

a trust-add --type ad addom --admin Administrator --password

This command will initiate the trust creation process, which involves providing the credentials of the AD administrator.

FreeIPA Trusts

FreeIPA Trust Management

Question 3

What is a correct statement about FreeIPA ID views?

AID views are used to modify sudo rules on a per host base.

BID views are the FreeIPA equivalent to Active Directory SIDs.

CID views specify new values for attributes of a POSIX user or group.

DID views provide a consecutive numberspace of UIDs and GIDs for FreeIPA users and groups.

EID views always manage IDs from 32768 to 65536.

Answer : C

In FreeIPA, ID views allow administrators to override default POSIX attributes for users and groups. This feature is useful when integrating with other identity management systems, enabling specific attribute values to be used on a per-host basis. This way, different POSIX attributes can be set for the same user or group in different contexts.

FreeIPA: ID Views

FreeIPA Documentation

Question 4

When logging into a windows workstation which is member of an Active Directory domain, which of the following user names refers to the local account bob instead of the domain-wide account bob?

Abob@local

B%bob%

C.\bob

D'bob'

Ebob$

Answer : C

When logging into a Windows workstation that is a member of an Active Directory domain, the .\ prefix is used to specify a local user account rather than a domain account. Therefore, to refer to the local account bob, you would use .\bob.

How to Log On to Your Computer if You Are a Domain User

Windows Logon Naming Conventions

Question 5

Which of the following commands terminates all running instances of the Samba daemon handling for SMB shares?

Asmbcontrol samba shutdown

Bsmbcontrol nmbd shutdown

Csmbcontrol shutdown

Dsmbcontrol smbd shutdown

Esmbcontrol cifs stop

Answer : D

Samba is a suite of programs that allows SMB/CIFS clients to interact with file and print services on a Linux/UNIX server.

smbd is the Samba daemon responsible for handling SMB/CIFS requests.

The smbcontrol utility is used to send messages to running Samba daemons.

The correct way to terminate all running instances of the Samba daemon handling SMB shares is to send a shutdown message to smbd using the command smbcontrol smbd shutdown.

This command ensures that only the smbd processes, which are responsible for handling SMB shares, are terminated without affecting other Samba components like nmbd (NetBIOS name server daemon).

Samba documentation: https://www.samba.org/samba/docs/current/man-html/smbcontrol.1.html

Question 6

Which service unifies Linux and Windows account management by allowing a Linux system to include Windows domain users in the Linux user database?

Asmbpasswdd

Bsudo

CNIS

DWinbind

EOpenLDAP

Answer : D

Winbind: This service is used to unify Linux and Windows account management by allowing a Linux system to include Windows domain users in the Linux user database.

Functionality: Winbind enables Linux systems to retrieve user and group information from a Windows NT-based domain or Active Directory.

Other Services:

smbpasswdd, sudo, NIS, OpenLDAP: These services do not provide the same functionality for unifying account management between Linux and Windows.

Samba Winbind Documentation

Question 7

In case the following parameters are set in a Samba file share configuration:

create mask = 711

force create mode = 750

What are the effective permissions of a file created with the permissions 777?

A066

B027

C777

D761

E751

Answer : E

The effective permissions of a file created with the permissions 777 can be calculated considering the create mask and force create mode.

create mask = 711 implies that the permission bits are ANDed with 0711, i.e., only the owner can read, write, and execute.

force create mode = 750 implies that certain permission bits are always set, specifically 0750, i.e., read, write, and execute for the owner, and read and execute for the group.

The create mask reduces the permissions to 0711, and then force create mode adds the 0750 mask to the result.

Original permission: 777 AND with create mask (711): 711 OR with force create mode (750): 751

Thus, the effective permission is 751.

Samba smb.conf man page - create mask

LPI 300-300 LPIC-3: Mixed Environments - Exam 300 - version 3.0 Exam Practice Test