18
Active Directory Fundamentals
| Date post: | 15-Jun-2015 |
| Category: |
Technology |
| Upload: | abdur-rehman-muhammadi |
| View: | 281 times |
| Download: | 0 times |
Active Directory Fundamentals
What Is a Directory Service?
A service that helps track and locate objects on a network A service that helps track and locate objects on a network
Active Directory Management
UsersUsersServicesServicesWorkstationsWorkstations FilesFiles
Active Directory Domains
Boundary of Authentication
Boundary of Policies
Boundary of Replication
CONTOSO.COM
Active Directory Trees
CONTOSO.COM
US.CONTOSO.COM
SharedSchema
Configuration
Global CatalogOHIO.US.CONTOSO.COM
Transitive Trusts
CONTOSO.COM
US.CONTOSO.COM
UK.CONTOSO.COM
Active Directory Forests
US.CONTOSO.COM
FABRIKAM.COM
UK.FABRIKAM.COM
CONTOSO.COM
Schema ConfigurationGlobal Catalog
Organizational Units
CONTOSO.COM
OU Admin
Organized For:•Administration
•Same Requirements•Delegation
•Group Policy•Configuration•Security
Organized For:•Administration
•Same Requirements•Delegation
•Group Policy•Configuration•Security
OU PolicyOU Security
Organizational Unit Applications
Sales Department Marketing DepartmentLondon New YorkDesktops Printers
Hardware Devices
Domain Controllers
Windows NT 4.0 Windows Server 2003
DC
DCBDC
BDC DC
PDC
Active Directory Sites
WAN Link
Site B
Site A
Sites Used To:•Locate Services•Optimize Replication•Define Policies
Sites Used To:•Locate Services•Optimize Replication•Define Policies
Sites and Domains
CONTOSO.COM
Site A
Site B
US.CONTOSO.COM
Global Catalog
• Spans all domains
• Contains object attributes
• Used for searches
• Exists on domain controllers
DNSDomain Naming System locates network services and resources.Domain Naming System locates network services and resources.
DNS Request Process
•Requested Service•Site Information
•IP Addresses•SVR Records
DCDCDNS ServerDNS Server
CacheCache
DNS Systems and Requirements
BIND 8.1.2
Secure Update
SRV Records*
Windows NT
Windows 2000
Windows Server 2003
AD Integration
Dynamic Update*
* Required for Active Directory
Replication Scope
Across Forest:•Schema NC•Configuration NC
Across Domain•Domain NC
More Replication Scope
Intersite(Compressed)
Intrasite(Token Ring)
Operations Masters
• Performs operation exclusively
• Within designated scope
• Defaults to first domain controller
Operations Master Roles
Domain RolesForest Roles
PDC EmulatorPDC EmulatorSchema MasterSchema Master
Domain MasterDomain Master
RID MasterRID Master
InfrastructureInfrastructure
![[MS-FRS1]: File Replication Service Protocol€¦ · Active Directory Active Directory. ,](https://static.documents.pub/doc/80x56/5e9a50be94d9c610711a8630/ms-frs1-file-replication-service-protocol-active-directory-active-directory.jpg)
