Microsoft 70-411 Exam – Q19

You work as a Network Administrator at has an Active Directory Domain Services (AD DS) domain named All servers in the domain have Microsoft Windows Server 2012 R2 installed.
You want to clone a domain controller to create another domain controller.

Which two of the following steps should you perform first? (Each correct answer presents part of the solution. Choose two.)

A. You should run the Install-ADDSDomainController PowerShell cmdlet.
B. You should run the New-ADDCCloneConfigFile PowerShell cmdlet.
C. You should run the sysprep.exe /oobe command.
D. You should run the dcpromo.exe /adv command.
E. You should place a DCCloneConfig.xml file in the %Systemroot%\NTDS folder.
F. You should place an Unattend.xml file in the %Systemroot%\SYSVOL folder.

Correct Answer: B, E

The New-ADDCCloneConfigFile cmdlet performs prerequisite checks for cloning a domain controller when run locally on the domain controller being prepared for cloning. This cmdlet generates a clone configuration file, DCCloneConfig.xml, at an appropriate location, if all prerequisite checks succeed.

There are two modes of operation for this cmdlet, depending on where it is executed. When run on the domain controller that is being prepared for cloning, it will run the following pre-requisite checks to make sure this domain controller is adequately prepared for cloning:
— Is the PDC emulator FSMO role hosted on a domain controller running Windows Server 2012?
— Is this computer authorized for domain controller cloning (i.e. is the computer a member of the Cloneable Domain Controllers group)?
— Are all program and services listed in the output of the Get-ADDCCloningExcludedApplicationList cmdlet captured in CustomDCCloneAllowList.xml?

If these pre-requisite checks all pass, the New-ADDCCloneConfigFile cmdlet will generate a DCCloneConfig.xml file at a suitable location based on the parameter values supplied. This cmdlet can also be run from a client (with Remote Server Administration Tools) and used to generate a DCCloneConfig.xml against offline media of the domain controller being cloned; however, none of the pre-requisite checks is performed in this usage mode. This usage is intended to generate DCCloneConfig.xml files with specific configuration values for each clone on copies of the offline media.

The clone domain controller uses the following criteria to detect that it is a copy of another domain controller:
1. The value of the VM-Generation ID supplied by the virtual machine is different than the value of the VM-Generation ID stored in the DIT.
2. Presence of a file called DCCloneConfig.xml in one of the following locations:

◦ The directory where the DIT resides
◦ %windir%\NTDS
◦ The root of a removable media drive