Top Windows Server Admin Interview Q&A | System Administrator Guide to Crack IT Jobs

1. Active Directory (AD)

Active Directory is a centralized database used to manage users, computers, and security settings in a network. It allows administrators to control access and enforce policies.


2. Group Policy

Group Policy is used to manage and configure user and computer settings centrally in Active Directory, improving security and consistency.


3. Why not restore a 9-month-old DC backup?

Because AD backups older than 180 days can cause lingering objects due to expired tombstones, leading to replication issues.


4. Hardware Experience

Experience includes installing, upgrading, troubleshooting, and replacing hardware components like RAM, HDD, and servers.


5. Forest, Tree, Domain

  • Domain: Collection of users/computers
  • Tree: Group of domains in hierarchy
  • Forest: Collection of multiple trees


6. WINS Server

WINS resolves NetBIOS names to IP addresses, mainly used in older Windows networks.


7. System Admin Skills

Problem-solving, technical knowledge, monitoring systems, communication, and quick troubleshooting.


8. Systems Worked On

Experience with Windows/Linux servers, handling user management, updates, and system monitoring.


9. Lingering Object

Deleted AD objects that remain due to replication issues.
Tool: repadmin
Importance: Prevents replication and performance issues.


10. Firewall vs Antivirus

  • Antivirus: Protects from malware
  • Firewall: Blocks unauthorized network access


11. AD Backup Importance

Prevents data loss and ensures recovery.
Done using tools like wbadmin or backup utilities.


12. Domain Controller

Server that manages authentication, users, and access to resources in a domain.


13. FAT vs NTFS

  • FAT: Limited security, smaller size support
  • NTFS: Secure, supports large files, permissions, encryption


14. Loopback Address

Used to test networking on the same system (e.g., 127.0.0.1).


15. Proxy Server

Acts as an intermediary between users and the internet, improving security and control.


16. Windows Registry

Database storing system and application configuration settings.


17. SYSVOL Folder

Stores Group Policy and login scripts, shared across domain controllers.


18. VoIP

Enables voice communication over IP networks instead of traditional telephony.


19. Windows Deployment Services (WDS)

Used to deploy Windows OS over the network without physical media.


20. Workgroup vs Domain

  • Workgroup: Decentralized, local control
  • Domain: Centralized authentication and management


21. LDAP

Protocol used to access and manage directory services like Active Directory.


22. PPP Protocol

Used for direct communication between two network devices.


23. IP Spoofing

Fake IP used by attackers.
Prevention: Firewalls, packet filtering.


24. Garbage Collection

Automatic memory cleanup of unused resources.


25. Frame Relay

High-speed WAN protocol operating at physical & data link layers.


26. DNS

Converts domain names into IP addresses.


27. Domain Admin vs Enterprise Admin

  • Domain Admin: Controls one domain
  • Enterprise Admin: Controls entire forest


28. Authoritative Restore

Restores AD data and forces replication of restored objects.


29. Daily Tasks of Sys Admin

Monitoring, backups, updates, user management, troubleshooting.


30. Object Server

Handles client requests using object-based communication.


31. Traceroute

Tracks path of packets using ICMP.


32. NetBIOS & NetBEUI

Legacy protocols for communication in small networks.


33. RSVP

Reserves network resources for QoS.


34. DHCP

Automatically assigns IP addresses to devices.


35. Email Ports

  • SMTP: 25
  • POP3: 110
  • IMAP: 143


36. Hub vs Switch

  • Hub: Broadcasts data to all
  • Switch: Sends data to specific device


37. HTTPS

Secure web protocol using SSL/TLS on port 443.


38. TCP

Reliable, connection-oriented protocol.


39. UDP

Fast, connectionless protocol.


40. Port Forwarding

Redirects network traffic to specific internal devices.


41. PowerShell vs CMD

  • PowerShell: Advanced, scripting, object-based
  • CMD: Basic command-line tool


42. RDP vs KVM

  • RDP: Remote software access
  • KVM: Hardware-based control


43. FTP vs SSH

  • FTP: File transfer (not secure)
  • SSH: Secure remote access


44. ARP & EFS

  • ARP: Maps IP to MAC
  • EFS: Encrypts files


45. IDS

Detects suspicious activities (Host-based & Network-based).


46. Telnet

Remote access protocol (not secure, replaced by SSH).


47. What is DFS (Distributed File System)?

DFS allows shared folders across multiple servers to appear as a single unified namespace.


48. What is NTDS.dit?

It is the database file where Active Directory stores all directory data.


49. What is Kerberos?

Authentication protocol used in AD that uses tickets for secure login.


50. What is a GPO Loopback Processing Mode?

Applies user policies based on the computer they log into (Merge/Replace modes).


51. What is FSMO Roles?

Flexible Single Master Operations roles control specific AD tasks.


52. Name the 5 FSMO Roles

Schema Master, Domain Naming Master, RID Master, PDC Emulator, Infrastructure Master.


53. What is SID?

Security Identifier – unique ID assigned to users and groups.


54. What is NTLM?

Legacy authentication protocol used before Kerberos.


55. What is Trust in AD?

Relationship between domains to allow resource access.


56. What is OU (Organizational Unit)?

Container in AD to organize users and apply policies.


57. What is BitLocker?

Disk encryption feature in Windows for data protection.


58. What is Event Viewer?

Tool used to view system logs and troubleshoot issues.


59. What is Task Scheduler?

Automates tasks like scripts, backups, and updates.


60. What is Windows Update Services (WSUS)?

Manages and deploys updates centrally.


61. What is Safe Mode?

Boot mode with minimal drivers for troubleshooting.


62. What is a Service in Windows?

Background process that runs without user interaction.


63. What is Disk Management?

Tool to manage partitions, volumes, and disks.


64. What is RAID?

Redundant Array of Independent Disks for performance and redundancy.


65. What is Virtual Memory?

Uses disk space as RAM when memory is full.


66. What is Paging File?

File used by Windows for virtual memory.


67. What is Hyper-V?

Microsoft virtualization platform.


68. What is a Snapshot?

Point-in-time state of a virtual machine.


69. What is VLAN?

Virtual LAN to segment networks logically.


70. What is NAT?

Network Address Translation for IP conversion.


71. What is Subnetting?

Dividing networks into smaller segments.


72. What is Default Gateway?

Device that connects network to external networks.


73. What is DNS Forwarder?

Forwards DNS queries to external servers.


74. What is Reverse Lookup Zone?

Maps IP addresses to domain names.


75. What is SRV Record?

DNS record used by AD to locate services.


76. What is DHCP Scope?

Range of IP addresses assigned by DHCP.


77. What is Reservation in DHCP?

Assigns fixed IP to a device.


78. What is Lease Time?

Duration IP is assigned to a client.


79. What is Network Policy Server (NPS)?

Implements authentication and authorization policies.


80. What is RADIUS?

Protocol for centralized authentication.


81. What is File Server?

Server that stores and manages files.


82. What is Print Server?

Manages printers and print jobs.


83. What is Shadow Copy?

Creates backups of files for recovery.


84. What is NTFS Permission?

Controls access to files/folders.


85. What is Share Permission?

Controls access over network shares.


86. What is Effective Permission?

Combined result of NTFS and Share permissions.


87. What is Roaming Profile?

User profile that moves with the user across systems.


88. What is Home Folder?

Personal storage assigned to a user.


89. What is Logon Script?

Script executed when user logs in.


90. What is WSFC (Failover Cluster)?

Ensures high availability of services.


91. What is Load Balancing?

Distributes traffic across multiple servers.


92. What is IIS?

Internet Information Services – Web server for hosting websites.


93. What is Certificate Authority (CA)?

Issues digital certificates for secure communication.


94. What is SSL/TLS?

Encryption protocols for secure data transfer.


95. What is Backup Types?

Full, Incremental, Differential.


96. What is System Restore?

Restores system to previous state.


97. What is Blue Screen (BSOD)?

System crash error screen in Windows.


98. What is Performance Monitor?

Tool to analyze system performance.


99. What is Resource Monitor?

Shows real-time CPU, memory, disk, network usage.


100. What is Patch Management?

Process of updating systems to fix bugs and security issues.


101. What is a Domain Join?

Adding a computer to a domain for centralized authentication.


102. What is a Local User Account?

Account stored on a single machine, not in Active Directory.


103. What is UAC (User Account Control)?

Security feature that prevents unauthorized system changes.


104. What is Credential Manager?

Stores user credentials like passwords securely.


105. What is Windows Defender?

Built-in antivirus in Windows.


106. What is SMB Protocol?

Server Message Block – used for file sharing.


107. What is SMB Version Difference?

SMB1 (old/insecure), SMB2/3 (secure and faster).


108. What is a Hidden Share?

Share ending with $ (e.g., C$).


109. What is Administrative Share?

Default hidden shares like C$, ADMIN$.


110. What is Netlogon Service?

Handles authentication requests in domain.


111. What is DSRM Mode?

Directory Services Restore Mode for AD recovery.


112. What is Replication in AD?

Data synchronization between domain controllers.


113. What is KCC?

Knowledge Consistency Checker – manages replication topology.


114. What is AD Site?

Represents physical network location.


115. What is Site Link?

Defines replication path between sites.


116. What is Bridgehead Server?

Handles replication between sites.


117. What is Global Catalog?

Stores partial copy of all objects in forest.


118. What is Universal Group?

Group usable across entire forest.


119. What is Security Group?

Used to assign permissions.


120. What is Distribution Group?

Used for email distribution only.


121. What is NTDSUTIL?

Command-line tool to manage AD database.


122. What is AD Recycle Bin?

Feature to restore deleted AD objects.


123. What is LDAP Port?

Port 389 (LDAP), 636 (LDAPS).


124. What is Time Synchronization in AD?

Ensures all systems have same time (important for Kerberos).


125. What is W32Time Service?

Windows Time Service for sync.


126. What is PDC Emulator Role?

Handles time sync and password updates.


127. What is SYSVOL Replication?

Replication of Group Policy and scripts.


128. What is FRS vs DFSR?

FRS (old), DFSR (new, efficient replication).


129. What is GPUpdate Command?

Forces Group Policy update.


130. What is RSOP?

Resultant Set of Policy – shows applied policies.


131. What is Secpol.msc?

Local security policy editor.


132. What is GPMC?

Group Policy Management Console.


133. What is Loopback Merge Mode?

Combines user and computer policies.


134. What is Loopback Replace Mode?

Overrides user policies.


135. What is Software Restriction Policy?

Controls which apps can run.


136. What is AppLocker?

Advanced application control feature.


137. What is Credential Guard?

Protects credentials using virtualization.


138. What is Windows Sandbox?

Temporary isolated environment to test apps.


139. What is Remote Assistance?

Allows remote help to users.


140. What is Remote Desktop Gateway?

Secure RDP access over internet.


141. What is NLA (Network Level Authentication)?

Authenticates users before RDP session starts.


142. What is Disk Quota?

Limits user disk usage.


143. What is Storage Spaces?

Combines multiple disks into one pool.


144. What is Mount Point?

Attaching volume to folder instead of drive letter.


145. What is CHKDSK?

Checks disk for errors.


146. What is SFC /scannow?

Repairs system files.


147. What is DISM Tool?

Repairs Windows images.


148. What is Windows PE?

Preinstallation environment for deployment.


149. What is Sysprep?

Prepares system image for cloning.


150. What is MDT?

Microsoft Deployment Toolkit for OS deployment.


151. What is PXE Boot?

Booting system over network.


152. What is Boot Order?

Sequence of device boot priority.


153. What is BIOS vs UEFI?

UEFI is modern firmware, faster and secure.


154. What is Secure Boot?

Prevents unauthorized OS loading.


155. What is TPM?

Trusted Platform Module for encryption/security.


156. What is BitLocker Recovery Key?

Key used to unlock encrypted drive.


157. What is Windows Hello?

Biometric authentication feature.


158. What is Smart Card Authentication?

Login using physical card.


159. What is MFA?

Multi-Factor Authentication for extra security.


160. What is Azure AD?

Cloud-based identity service by Microsoft.


161. What is Hybrid AD?

Integration of on-prem AD with Azure AD.


162. What is Conditional Access?

Controls access based on conditions.


163. What is Intune?

Device management solution.


164. What is Endpoint Manager?

Manages devices and policies centrally.


165. What is PowerShell ISE?

Editor for PowerShell scripts.


166. What is Execution Policy?

Controls script execution.


167. What is Get-Help Command?

Displays help for commands.


168. What is Pipeline in PowerShell?

Passes output between commands.


169. What is Taskkill Command?

Terminates processes.


170. What is Netstat?

Displays network connections.


171. What is IPConfig?

Shows IP configuration.


172. What is Nslookup?

Queries DNS records.


173. What is Ping?

Tests connectivity.


174. What is FlushDNS?

Clears DNS cache.


175. What is Systeminfo?

Displays system details.


176. What is GPResult?

Shows applied Group Policies.


177. What is WMIC?

Command-line management tool.


178. What is Event ID?

Unique identifier for logs.


179. What is Log Rotation?

Managing log size and storage.


180. What is SIEM?

Security monitoring system.


181. What is Patch Tuesday?

Monthly updates from Microsoft.


182. What is Zero-Day Attack?

Unknown vulnerability exploit.


183. What is Hardening?

Securing systems by reducing vulnerabilities.


184. What is Baseline Policy?

Standard security configuration.


185. What is Audit Policy?

Tracks user/system activities.


186. What is Account Lockout Policy?

Locks account after failed attempts.


187. What is Password Policy?

Defines password rules.


188. What is Privilege Escalation?

Gaining higher access rights.


189. What is Token?

Security identity of a user session.


190. What is SID History?

Maintains old SIDs after migration.


191. What is Migration in AD?

Moving users/resources between domains.


192. What is Trust Direction?

One-way or two-way trust.


193. What is Backup Schedule?

Planned backup timing.


194. What is Disaster Recovery Plan?

Strategy to recover systems.


195. What is High Availability?

Ensures system uptime.


196. What is Failover?

Switch to backup system.


197. What is SLA?

Service Level Agreement.


198. What is Monitoring Tool?

Tracks system health.


199. What is Capacity Planning?

Planning resources for future needs.


200. What is Documentation?

Recording system configurations and processes.


Check below link for Desktop Support Interview Question & Answer (Beginner Level):

https://techstack-it.blogspot.com/2026/02/desktop-support-engineer-l1-interview.html


Subscribe to my YouTube channel: www.youtube.com/@Stack_Tech

Comments

Post a Comment

Popular posts from this blog

Active Directory Overview (Windows Server) for Interview Preparation

Image
What is Active Directory ? Active Directory (AD) is Microsoft's directory service used to Manage below Network objects and Resources Manage users Manage Computers Manage Groups Control access to resources apply security policies     We can call AD as : A centralized brain of windows network Without AD: Every computer has its own users Passwords aren't Shared Policies must be configured one-by-one. With AD: one login works everywhere. Permission are controlled centrally. Security is enforced automatically. Active Directory Web Services Port number : 9389 Why Active Directory Exists ? Imagine a company having 1000 Employees: Without AD 1000 local accounts per Server. Manual access control. No central security. Difficult to Manage. With AD: One user account per employee login from any company PC Central password rules Easy onboarding or Offboarding Core Components of Active Directory ? Domain Domain Controller (DC) Objects Organizational units (OUs) Domain : A domain is a logica...
Read more

Desktop Support Interview Q&A (Beginner Level)

Image
1) What is active directory? Active directory authorizes and authenticates all users and computers in a window domain network, ensuring the security of the computer and software. Through active directory various functions can be managed like creating admin users, connecting to printers or external hard drives.   2) What is DHCP and what it is used for? DHCP stands for dynamic host configuration protocol. It is used to allocate IP addresses to a large number of the computer system in a network.   It helps in managing the large number of IPs very easily.   3) What is scope and super scope? Scope consists of an IP address like gateway IP, subnet mask, DNS server IP. It can be used to communicate with the other PCs in the network. The super scope becomes when you combine two or more scopes together.   4) What is DNS? DNS mean Domain Naming Service, and it is used for resolving IP addresses to name and names to IP address. DNS is like a translator for ...
Read more

IT Abbreviations Explained for Beginners | Most Asked in Interviews

Image
Important IT & computer-related words with their full forms — useful for S chool, College, Competitive Exams, and Interviews . COMPUTER - Common Operating Machine Purposely Used for Technological and Educational Research IT – Information Technology CPU – Central Processing Unit ALU – Arithmetic Logic Unit CU – Control Unit RAM – Random Access Memory ROM – Read Only Memory HDD – Hard Disk Drive SSD – Solid State Drive JPG/JPEG – Joint Photographic Experts Group PNG – Portable Network Graphics USB – Universal Serial Bus VDU – Visual Display Unit UPS – Uninterruptible Power Supply BIOS – Basic Input Output System CMOS – Complementary Metal Oxide Semiconductor CD – Compact Disc DVD – Digital Versatile Disc LED – Light Emitting Diode LCD – Liquid Crystal Display SMPS – Switched Mode Power Supply NIC – Network Interface Card GPU – Graphics Processing Unit OCR –...
Read more