Chapter 13 Installing Domain Controllers.docx - Chapter 13...

This preview shows page 1 - 3 out of 6 pages.

Chapter 13 Installing Domain Controllers Introducing Active Directory A directory service is a repository of information about the resources—hardware, software, and human—connected to a network. Users, computers, and applications throughout the network can access the repository for various purposes: o User Authentication o Storage of Configuration data o Accessing files and printers AD DS is a directory service that enables you to create organizational divisions called domains. A domain is a logical container of network components, hosted by at least one server designated as a domain controller. Active Directory functions Authentication is the process of verifying a user’s identity by using: Passwords Smart cards Biometrics (fingerprint, scan) Authorization is the process of granting the user access only to the resources he or she is permitted to use by using: ACLs and ACEs Understanding Active Directory Architecture Active Directory is a hierarchical directory service, based on the domain, which is scalable in both directions. You can subdivide a domain into organizational units and populate it with objects. You can also create multiple domains and group them into sites, trees, and forests. AD DS provides a highly flexible architecture that can accommodate the smallest and the largest organizations. Understanding Objects and Attributes An AD DS domain is a hierarchical structure that takes the form of a tree, much like a file system. The domain consists of objects, each of which represents a logical or physical resource. Every object consists of attributes, which store information about the object. Different object types have different sets of attributes, depending on their functions. The directory schema defines the attributes for each object and the information that is required and optional. Classes of Objects
A container object can have other objects subordinate to it o Domain o Organizational unit A leaf object cannot have subordinate objects: o Users computer o Groups o Application o Network resources o Understanding Domains Domains You can create a hierarchy within a domain. You can create a hierarchy out of multiple domains. You begin the process of designing an Active Directory infrastructure by deciding what domains to create and you begin deploying AD DS by creating your fist domain.

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture