Review OF Dynamic Registry.


102 views
Uploaded on:
Description
Section 1 Review OF Dynamic Index Dynamic Registry Capacities Catalog Administrations Used to characterize, oversee, get to, and secure system assets. Assets include: records, printers, gatherings, individuals, and applications. Dynamic Catalog Put away as NTDS.dit on an area controller.
Transcripts
Slide 1

Part 1 OVERVIEW OF ACTIVE DIRECTORY

Slide 2

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY ACTIVE DIRECTORY FUNCTIONS Directory Services Used to characterize, oversee, get to, and secure system assets. Assets include: records, printers, gatherings, individuals, and applications. Dynamic Directory Stored as NTDS.dit on an area controller. Utilized by space controllers to confirm clients. Space controllers store, keep up, and repeat.

Slide 3

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY ACTIVE DIRECTORY BENEFITS Centralized organization Single purpose of access Fault resilience and excess Multiple space controllers are utilized Multi-expert replication Simplified asset area

Slide 4

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY CENTRALIZED ADMINISTRATION Hierarchical association for simplicity of organization Common Microsoft Management Console (MMC) instrument set Active Directory Users And Computers (DSA.MSC) Active Directory Domains And Trusts (DOMAIN.MSC) Active Directory Sites And Services (DSSITE.MSC)

Slide 5

Before registry administrations After index administrations Active Directory Single sign-on Chapter 1: OVERVIEW OF ACTIVE DIRECTORY SINGLE POINT OF AUTHENTICATION Server1 Server2 Server3

Slide 6

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY MULTI-MASTER REPLICATION

Slide 7

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY SIMPLIFIED RESOURCE LOCATION Search highlights accessible on Microsoft Windows 2000, Microsoft Windows XP, and Microsoft Windows Server 2003. Seek Active Directory to discover: Shared envelopes Printers People (client accounts)

Slide 8

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY ACTIVE DIRECTORY SCHEMA Object classes User accounts Computer records Printers Groups Object Attributes Name Globally one of a kind identifier (GUID) Location (for printer) E-mail address (for clients)

Slide 9

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY ACTIVE DIRECTORY COMPONENTS

Slide 10

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY ORGANIZATIONAL UNITS Container articles Look like an organizer with a book symbol in Active Directory Users And Computers Security is connected to OUs Inherited by kid OUs Used to control access to that OU or shroud subordinate OUs Allows for the assignment of managerial rights

Slide 11

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY DOMAINS Logical gathering of assets. Structure security and replication limits. Individual access control records (ACLs) for every area. Bunch Policies are commonly appointed and acquired inside of a space just, not from the woods. Area replication is autonomous of worldwide inventory and pattern replication. Various spaces may be utilized by a solitary association.

Slide 12

Forest root Domain tree and tree root ou root guardian ou contoso . com tailspintoys . com tyke west . contoso . com east . contoso . com Chapter 1: OVERVIEW OF ACTIVE DIRECTORY DOMAINS, TREES, AND A FOREST

Slide 13

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY SITES Used to mirror the physical system structure Usually neighborhood (LAN) versus wide zone system (WAN) Optimize replication Knowledge Consistency Checker (KCC) makes and keeps up this structure

Slide 14

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY NAMING STANDARDS Lightweight Directory Access Protocol (LDAP) Standard naming structure and chain of command Established by the Internet Engineering Task Force (IETF) Domain Name System (DNS) Uniform Resource Locator (URL)

Slide 15

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY LDAP NAMES Cn=jsmith,ou=sales,dc=cohowinery,dc=com jsmith@cohowinery.com

Slide 16

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY PLANNING FOR ACTIVE DIRECTORY Logical and physical structure DNS and Active Directory incorporation and naming Functional levels of spaces and woods Trust connections and models

Slide 17

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY STRUCTURING ACTIVE DIRECTORY Security and managerial objectives are critical when characterizing the intelligent structure. Bunch Policy application and legacy Delegating authoritative control Permission legacy Logical structure regularly mirrors the business or regulatory model. Destinations are utilized to mirror the physical structure of the system.

Slide 18

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY ROLE OF DNS Resolves benevolent names to Internet Protocol (IP) addresses. Needed by Active Directory. Area individuals utilization administration locator (SRV) records to discover space controllers. Dynamic DNS (DDNS) is bolstered and prescribed.

Slide 19

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY FUNCTIONAL LEVELS Designed to bolster downlevel similarity Increasing practical level takes into consideration utilization of new components Two sorts of useful level Domain utilitarian level Forest useful level

Slide 20

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY DOMAIN FUNCTIONAL LEVELS Windows 2000 blended Windows 2000 local Windows Server 2003 break Windows Server 2003

Slide 21

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY WINDOWS 2000 MIXED FUNCTIONAL LEVEL Domain controllers can keep running on the accompanying working frameworks: Windows NT Server 4.0 Windows 2000 Server Windows Server 2003 Features at this useful level include: Install from media Application index parcels Enhanced client interface (UI)

Slide 22

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY WINDOWS 2000 NATIVE FUNCTIONAL LEVEL Domain controllers can keep running on the accompanying working frameworks: Windows 2000 Server Windows Server 2003 Features at this useful level include: Group settling Universal gatherings Security Identifier History (siDHistory)

Slide 23

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY WINDOWS SERVER 2003 INTERIM FUNCTIONAL LEVEL Designed for associations that have not moved up to Windows 2000 Active Directory. Just Windows Server 2003 and Windows NT Server 4.0 space controllers are upheld. Windows 2000 Server area controllers are NOT permitted. No additional elements over whatever other utilitarian level.

Slide 24

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY WINDOWS SERVER 2003 FUNCTIONAL LEVEL Only Windows Server 2003 area controllers Features at this practical level include: Replicated last logon timestamp Key Distribution Center (KDC) form numbers User secret key on inetOrgPerson objects Domain renaming

Slide 25

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY RAISING THE DOMAIN FUNCTIONAL LEVEL Must be signed on as an individual from the Domain Admins bunch. Performed utilizing the Primary Domain Controller (PDC) emulator. All space controllers must backing the new level. Irreversible.

Slide 26

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY FOREST FUNCTIONAL LEVELS Windows 2000 Windows Server 2003 break Windows Server 2003

Slide 27

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY WINDOWS 2000 FOREST FUNCTIONAL LEVEL All space controllers must be Windows 2000 Server or Windows Server 2003 area controllers. Components bolstered at this useful level include: Install from media Universal gathering reserving Application catalog allotments

Slide 28

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY WINDOWS 2003 INTERIM FOREST FUNCTIONAL LEVEL Only Windows Server 2003 and Windows NT Server 4.0 area controllers are upheld. Windows 2000 Server area controllers are NOT permitted. Highlights at this level include: Improved between site topology generator (ISTG) Improved connected worth replication

Slide 29

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY WINDOWS SERVER 2003 FOREST FUNCTIONAL LEVEL Only Windows Server 2003 space controllers are bolstered. Highlights at this level include: Dynamic helper class objects User articles can be changed over to inetOrgPerson objects Schema redefinitions allowed Domain renames allowed Cross-timberland trusts allowed

Slide 30

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY RAISING THE FOREST FUNCTIONAL LEVEL Must be signed on as an individual from the Enterprise Administrators bunch. Must be joined with the Schema Operations Master. All space controllers must backing the new utilitarian level. Irreversible.

Slide 31

Forest Root Domain Child Domain A Child Domain C Child Domain B Child Domain D Chapter 1: OVERVIEW OF ACTIVE DIRECTORY ACTIVE DIRECTORY TRUST MODELS Transitivity: If A trusts B and B trusts C, then A trusts C

Slide 32

Forest Root Domain Child Domain A Child Domain C Shortcut Trust Child Domain B Child Domain D Chapter 1: OVERVIEW OF ACTIVE DIRECTORY SHORTCUT TRUST

Slide 33

Domain A Domain B C Domain D Chapter 1: OVERVIEW OF ACTIVE DIRECTORY WINDOWS NT SERVER 4.0 TRUST MODEL

Slide 34

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY CROSS-FOREST TRUST New in Windows Server 2003 Trusts between two woods Requires Windows Server 2003 woodland useful level Uses Kerberos as do all Windows 2000 and Windows Server 2003 intra-timberland trust connections

Slide 35

Chapter 1: OVERVIEW OF ACTIVE DIRECTORY SUMMARY Active Directory is a database (NTDS.dit). DNS is needed by Active Directory. Outline characterizes article sorts and qualities. Space and timberland utilitarian levels give a harmony between in reverse similarity and new usefulness. Dynamic Directory takes into consideration two-way transitive (Kerberos) trusts. Trusts permit space progressions to be made. Cross-backwoods trusts are another component for Windows Server 2003 Active Directory.

Recommended
View more...