Beruflich Dokumente
Kultur Dokumente
References
Technical overview of Windows 2003 Active Directory Introduction to Windows 2003 Active Directory in application mode Windows 2003 Reviewers Guide
Agenda
What is Active Directory Building an Active Directory Using Active Directory Features Active Directory Objects Auditing Active Directory
Group Names
Contributions made by
Charles Guzman Daniel Gebretensai Ervand Akopyan Hovik Gharadaghi
Schema
Describes the object classes Defines the attributes for the object classes
Structural Components
Objects based hierarchical structure with constructs
Domains Trees Forests Trust relationships Organizational Units Sites
Tree
Parent and child domains in a domain tree. Double-headed arrows indicate two-way transitive trust relationships
Forests
One forest with three domain trees. The three root domains are not contiguous with each other, but EuropeRoot.com and AsiaRoot.com are child domains of HQ-Root.com.
Trust Relationships
Transitive Two-way Shortcut trusts External trusts
Trust Relationships
Organizational Units
Trust Relationships
Directory Protocols
Based on standard directory protocols Interoperate with other protocols Example: LDAP
LDAP it is used to add, modify, delete and query information stored in AD LDAP to AD is like SQL to Oracle LDAP determines how a client can access the directory, operations within the directory and share directory data
Requirements
The computer must be Windows 2k, 2k3 Server, Advanced Server or Datacenter Server. At least one volume on the computer must be formatted with NTFS. DNS must be active on the network prior to AD installation or be installed during AD installation. DNS must support SRV records and be dynamic. The computer must have IP protocol installed and have a static IP address. The Kerberos v5 authentication protocol must be installed. Time and zone information must be correct.
DCPROMO
Role of DNS
Clients use DNS to locate Active Directory controllers. Servers and client computers register their names and IP addresses with the DNS server
Requirements
Existing Domain Member Server
Managing Users
Managing Computers
Managing Groups
Auditing
Auditing
Audit related functional activities
Privilege
File, folder, registry key, printer etc. Create users and groups, modify membership, change password etc.
Service start/stop
User access to Active Directory objects
References
www.microsoft.com www.windowsitpro.com www.visualwin.com
http://www.microsoft.com/technet/prodtechnol/w indowsserver2003/library/DepKit/d2ff1315-171248e4-acdc-8cae1b593eb1.mspx http://en.wikipedia.org/wiki/Active%5FDirectory
The End