Pop Quiz: Windows Server 2012 R2 Domain and Forest Trust Relationships
Applies to the "Design and implement an Active Directory infrastructure (logical)" objective of Exam 70-413.
Q: A company's IT team is considering a plan for multiple domains and forests to meet isolation requirements for a DMZ network.
Which of the following trust relationships are non-transitive?
Answer is C. A forest trust is transitive only in the way that all domains from each forest of a trust will allow authentication and identity to every other domain in the opposing forest. They are non-transitive in nature when forest A trusts B which trusts C, A and C have no trust relationship.
Quick Tip: Minimum forest functional level for forests involved in the trust relationship is Windows Server 2003.
Reference: Secure access to company resources from any location on any device
Bonus Question: Which technology is supported with Windows Server 2012 R2 that allows for rapid domain controller provisioning? (The answer, of course, will be revealed next time!)
Answer to bonus question from last week: DirSync is the name of the technology that allows synchronization of on-premises directory objects with Microsoft Azure Active Directory.
Andy Barkl, MCT/MCITP/MCSA, A+, Network+, Security+, CCNA has been studying technology for 30 years. Of the last 15 years, he has spent much of his time parting the knowledge and experience he has gained through IT exams, over 300, to help others be prepared and successful. He teaches classes in Phoenix, Ariz. where he has lived most of his life. He can be reached by e-mail at email@example.com.