301 Class 13: Active Directory

102 OPS | Home | README.md | Portfolio | ← | →

Reading

What is Active Directory?

It's an identity management service for Windows Domain Networks

What exactly is “Active Directory” and are the key services it provides?

The Key services:

1. AD DS - Active Directory Domain Services - Manages users and resources
2. AD LDS - Active Directory Lightweight Directory Services - low-overhead version of AD DS for directory enabled applications
3. AD CS - Active Directory Certificate Services - for issuing and managing digital security certificates
4. AD FS - Active Directory Federation Services - For sharing identity and access management information across organizations and enterprises (controlling access permissions to documents, workbooks, presentations, etc.)
5. AD RMS - Active Directory Rights management Services - For info right management

What are the differences between a domain, forest, and tree in Active Directory?

A domain is a collection of users and devices that share the same Active Directory, A tree is a collection of domains and a forest is a collection of trees. The forest serves as a security boundary for an enterprise network. The forest isn't part of a namespace. like corp.globex.com

How can objects (e.g. users, devices) within a domain be grouped?

To make it simple for admin, users and devices can be grouped into OUs - organizational Units - to mirror geographical structures and add group policies to these groups.

Explain the benefits of Active Directory, as you would to a family member.

Active Directory is like a big palm pilot. Makes it easy for the boss to add remove people. Only the right people can access certain things. Keeps everything safe, Makes sure only 1 password is used instead of thousands. Videos DHCP Overview Configuring DHCP