LPI 300-300 Exam Practice Test Instant Access

Question 1

FILL BLANK

What attribute starts the declaration of an object in an LDIF file? (Specify ONLY the attribute name without any values.)

Adn

Answer : A

An LDIF (LDAP Data Interchange Format) file is used to represent directory entries in LDAP (Lightweight Directory Access Protocol).

Each entry in an LDIF file starts with the dn (Distinguished Name) attribute, which uniquely identifies the entry in the directory.

The dn attribute is mandatory and specifies the path to the entry within the LDAP directory.

LDAP documentation: https://ldap.com/ldap-data-interchange-format-ldif/

OpenLDAP LDIF documentation: https://www.openldap.org/doc/admin24/ldif.html

Question 2

What is true about the container CN=Users in an Active Directory LDAP tree? (Choose two.)

AGPOs cannot be assigned to this container.

BUsers outside of this container cannot log into any member computer of the domain.

CThe container can only contain user object but no user groups.

DNew users are created here and must be moved to another container before they can log in.

ENew users are by default created in this container.

Answer : A, E

CN=Users Container:

GPOs: Group Policy Objects (GPOs) cannot be linked to this container because it is not an Organizational Unit (OU). GPOs can only be applied to OUs.

Default Location: New users are created in the CN=Users container by default when using standard Active Directory tools unless specified otherwise.

Other Options:

Users outside this container can log in.

The container can contain both user objects and user groups.

Users created here do not need to be moved to log in.

Active Directory Containers and OUs

Question 3

In order to generate an individual log file for each of the machines connecting to a Samba server, which of the following statements must be used in the Samba configuration file?

Alog file = /var/log/samba/log.%m

Blog file = /var/log/samba/log.%M

Clog file = /var/log/samba/log.%r

Dlog file = /var/log/samba/log.%I

Elog file = /var/log/samba/log.%c

Answer : A

Individual Log Files:

A . log file = /var/log/samba/log.%m: To generate an individual log file for each machine connecting to a Samba server, the %m variable is used in the log file path. This variable represents the machine name of the connecting client. Thus, the configuration line log file = /var/log/samba/log.%m creates a unique log file for each client machine.

Samba smb.conf manual

Logging configurations in Samba

Question 4

Which of the following statements about automount in a FreeIPA domain are true? (Choose two.)

AIn a FreeIPA domain, mount points for automount are always directories.

BThe command ipa automount up mounts all file systems handled by automount on a FreeIPA client.

CThe base configuration file for automount is /etc/auto.master.

DIn a FreeIPA domain, automount requires SSSD to be installed on each client.

EIn a FreeIPA domain, automount can only mount NFS shares from FreeIPA servers.

Answer : C, D

Automounting in a FreeIPA domain involves several key aspects:

Base Configuration File (/etc/auto.master): The auto.master file is the main configuration file for the automounter. It contains the master map which defines mount points and their corresponding maps. This file is crucial for setting up automount points.

Example entry in /etc/auto.master:

plaintext

Copy code

/home /etc/auto.home

SSSD Requirement: In a FreeIPA domain, automount requires the System Security Services Daemon (SSSD) to be installed and configured on each client. SSSD is used to retrieve automount maps from the FreeIPA server, enabling the automount feature to function correctly.

Example configuration in /etc/sssd/sssd.conf:

[sssd] services = nss, pam, autofs config_file_version = 2 domains = example.com [domain/example.com] autofs_provider = ipa ipa_server = _srv_

Automount Configuration

FreeIPA SSSD Integration

Question 5

Which group of commands manages the directory replication in an active directory domain?

Asamba-tool repl

Bsamba-tool directory

Csamba-tool drs

Dsamba-tool domain

Esamba-tool sync

Answer : C

samba-tool drs: This set of commands is used to manage directory replication in an Active Directory domain. DRS stands for Directory Replication Service.

Functionality: It provides various subcommands to monitor, manage, and troubleshoot replication issues.

Other Commands:

samba-tool repl, directory, domain, sync: These do not specifically manage directory replication in the same way as samba-tool drs.

Samba DRS Command Documentation

Question 6

Which of the following statements are true regarding the smbpasswd command? (Choose two.)

AThe -x parameter removes an account from the Samba database.

BThe -a parameter adds an account to the Samba database. If the account already exists, this parameter is ignored.

CThe -d parameter deletes an account from the Samba database.

DThe -e parameter excludes an account from the Samba database.

Esmbpasswd changes only passwords on Samba domain controllers while DCs running Windows keep the old passwords.

Answer : A, B

-x Parameter: This parameter is used to remove (delete) an account from the Samba database.

Example: smbpasswd -x username

-a Parameter: This parameter adds a new account to the Samba database. If the account already exists, it will update the account.

Example: smbpasswd -a username

Other Options:

-d Parameter: Disables (not deletes) an account.

-e Parameter: Enables a previously disabled account.

Password Synchronization: The smbpasswd command does not affect Windows domain controllers; it manages Samba-specific passwords.

smbpasswd Command Documentation

Question 7

A Samba 4 server provides DNS information regarding an Active Directory Domain. All other DNS information is provided by an additional DNS server. Which of the following solutions ensures that the clients of the Samba server can look up all DNS records including those from the domain?

AThe additional DNS server is configured in the file /etc/resolv.conf on the Samba server and the option dns forwarder = yes is set in smb.conf.

BThe search domain of all clients is set to the Active Directory domain name. All clients query only the additional DNS server and not a domain controller.

CBoth the Samba server and the additional DNS server are configured on the clients. This ensures that the Samba server is listed first in each client's resolv.conf.

DAll clients are configured to send DNS queries to the additional DNS server only. The Samba server's smb.conf contains the option wins dns proxy = yes to provide all domain-related naming information via the NetBIOS name service independently from DNS.

EThe additional DNS server is configured in the option dns forwarder in smb.conf. All clients query the Samba server for any DNS information.

Answer : E

dns forwarder: This smb.conf option specifies the DNS server to which queries should be forwarded if they cannot be resolved locally by the Samba server.

Configuration:

Add dns forwarder = to smb.conf on the Samba server.

Ensure all clients are configured to query the Samba server for DNS information.

Process:

Clients send all DNS queries to the Samba server.

If the Samba server cannot resolve a query locally, it forwards the request to the additional DNS server.

Benefit: This ensures that all DNS records, including those from the Active Directory domain and other DNS information, can be resolved by the clients.

Samba DNS Forwarding

LPIC-3: Mixed Environments - Exam 300 - version 3.0 300-300 Exam Practice Test