Windows Server
The directory service used in Windows networks.
What is Active Directory?
Command to view current directory.
What is pwd?
Tool used to test connectivity.
What is netstat or ss?
Tool used to monitor CPU, memory in Windows.
What is Task Manager?
Before making config changes in production, you should do this.
What is take a backup or use staging?
This protocol lets admins manage Windows remotely.
What is RDP?
Command to see disk usage.
What is df -h?
Displays active connections and listening ports.
What is netstat or ss?
Linux tool for real-time process monitoring.
What is top or htop?
This principle limits user access to only what they need.
What is least privilege?
Role needed to issue certificates in a Windows domain.
What is Certificate Authority?
A scheduled task on a Unix-like operating system that runs automatically at predetermined times or intervals.
What is a cronjob?
Shows current routing table.
What is route or ip route?
The main log file for system events on Windows.
What is Event Viewer?
The process of identifying and evaluating risk.
What is risk assessment?
Command to force a Group Policy update.
What is gpupdate /force?
Command to search for a string in files.
What is grep?
Windows tool to flush the DNS cache.
What is ipconfig /flushdns?
Tool used to centralize and analyze logs.
What is Splunk or ELK Stack?
Documentation for how to restore services after an incident.
What is a disaster recovery plan?
The FSMO role responsible for RID allocation.
What is the RID Master?
View last 50 lines of a log file continuously.
What is tail -n 50 -f filename?
Tool used to capture packets on a network.
What is Wireshark?
Protocol used for forwarding logs.
What is syslog?
A strategy to avoid having one single point of failure.
What is redundancy?