CREST Practitioner Security Analyst (CPSA) Practice

What do FSMO roles represent in the context of Active Directory?

• A. Fixed Single Master Operations
• B. Flexible Single Master Operations
• C. Functional Security Management Operations
• D. Federated Single Master Operations

The correct answer is: Flexible Single Master Operations

Flexible Single Master Operations, often abbreviated as FSMO, represent specific roles within an Active Directory (AD) environment that are essential for the proper functioning and organization of the directory service. These roles are critical for managing certain aspects of AD to ensure consistency and coordination across domain controllers. In Active Directory, there are five FSMO roles that help in maintaining the integrity and performance of the directory service. These roles are divided into two categories: forest-wide roles and domain-wide roles. The forest-wide roles include the Schema Master and Domain Naming Master, while the domain-wide roles encompass the PDC Emulator, RID Master, and Infrastructure Master. Each FSMO role plays a unique part in AD management. For example, the Schema Master governs changes to the schema of the directory, making it important for the organization of object types and their attributes. Similarly, the PDC Emulator is crucial for time synchronization and authentication within a domain. The use of "flexible" in the term signifies that while these roles are assigned to specific domain controllers, they can be transferred as necessary to ensure operational integrity and reliability. The other options refer to non-existent or irrelevant concepts within the context of Active Directory. Hence, Flexible Single Master Operations is the correct choice, as it accurately describes the