Active directory bible
anku5757
385 views
205 slides
May 10, 2010
Slide 1 of 205
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
About This Presentation
Active Directory
Slide Content
ABOUT IDG BOOKS WORLDWIDE
Bator
Media Development €
Marisa Pearman
Media Development €
Marisa Pearman
Preface Xi
xvi Content
coments xvii
| xVii Contents |
Contents
xix
xix
contents xxi
CHARTER
In This Chapter
Exploring directory
Examining he Active
Dieciory feanxes
Understanding th
sve Directory
cal anıchre
Parsing forthe
ve Diecory
In This Chapter
Exploring directory
Examining he Active
Dieciory feanxes
Understanding th
sve Directory
cal anıchre
Parsing forthe
ve Diecory
Part! + Planning an Active Directory Deployme
Chapter 1 + Introduction to Active Directory Technology and Deployment Planning
Part! + Planning an Active Directory Deployme
1 + Introduction to Active Directory Technology and Deployment
Part! + Planning an Active Directory Deployme
1 you have worked in a multple domain NT network you know a thing or two about trust
jonships Tut relationships enable a user in Doman Ato access resourcesin Domain
Windows NT, you had to configure each side of the trust—determining who was
and it gure and manage
ru relationships in Windows 2000. In Windows 2000
ments hat need more than one dom, automatic Kerberos transtve trust are established
hen you crece new domansin the ore ro. Keberosis the seu protocol n Windows
00, replacing NTLM in Windows NT. Kerberos provides superior secu technology and
‘many new socurty features, ke transe rst retionshipa A transtive trust simply means
that Domain A wuss Domain 8, and Domain Brute Domain C then Domain A automalı
ly tuss Domain Ce trantive nut rlaonsnis are automatically configured witha
‘other domains and domain tres within the forest. The forest sores as your boundary and
1 you have worked in a multple domain NT network you know a thing or two about trust
jonships Tut relationships enable a user in Doman Ato access resourcesin Domain
Windows NT, you had to configure each side of the trust—determining who was
and it gure and manage
ru relationships in Windows 2000. In Windows 2000
ments hat need more than one dom, automatic Kerberos transtve trust are established
hen you crece new domansin the ore ro. Keberosis the seu protocol n Windows
00, replacing NTLM in Windows NT. Kerberos provides superior secu technology and
‘many new socurty features, ke transe rst retionshipa A transtive trust simply means
that Domain A wuss Domain 8, and Domain Brute Domain C then Domain A automalı
ly tuss Domain Ce trantive nut rlaonsnis are automatically configured witha
‘other domains and domain tres within the forest. The forest sores as your boundary and
Chapter 1 + Introduction to Active Directory Technology and Deployment Planning
Part! + Planning an Active Directory Deployme
Chapter 1 + Introduction to Active Directory Technology and Deployment Planning 11
12 Pat + Panning an Active Di
Chapter 1 + Introduction to Active Directory Technology and Deployment Planning 13
14 Pat + Planningan Active Di
Chapter 1 + Introduction to Active Directory Technology and Deployment Planning 15
16 Pati + Planning an Active Directory Deployme
Chapter 1 + Introduction to Active Directory Technology and Deployment Planning 17
18 Part + Planning an Active Directory Deployme
cHarfer
In This Chapter
Descibing a
namespace
Exploring the
ONShierarchy
arcing and
signing fe forest
domain ro
In This Chapter
Descibing a
namespace
Exploring the
ONShierarchy
arcing and
signing fe forest
domain ro
20 Pati + Planning an Active Directory Deploymer
22 Pati + Planning an Active Directory Deploymer
Chapter 2 + The Active Directory
24 Pat! + Planning an Active Directory Deploymer
Directory Namespace 25
26 Pat! + Planningan Active D)
28 Pati + Planning an Active Directory Deploymer
fetve Directory. Suppose your company, Wison Dog Colas
but now wants to change
annot change the root domain thout comple aaling the Active
Directory is a great dire
but now wants to change
annot change the root domain thout comple aaling the Active
Directory is a great dire
Pat | + Planning an Active Directory Deploym
SEEN
When designing your Av Directory ro ¡gpesion isto use a name that is
representave 0! and encompasess your ente company and one ha is valable or oser
teme, Even i your company do n À presen
Inthe future, stil recommend thal ou pay the annual fee and ro
‘The nte is il evolving and changing the way we do business Lit because a company
‘means your Internet name and Active Directory names will have tobe diferent. So, my su
pesto 11 reger the name. I's rather insspensiv and can avoid many potenti eves
and problems in he future
SEEN
When designing your Av Directory ro ¡gpesion isto use a name that is
representave 0! and encompasess your ente company and one ha is valable or oser
teme, Even i your company do n À presen
Inthe future, stil recommend thal ou pay the annual fee and ro
‘The nte is il evolving and changing the way we do business Lit because a company
‘means your Internet name and Active Directory names will have tobe diferent. So, my su
pesto 11 reger the name. I's rather insspensiv and can avoid many potenti eves
and problems in he future
Directory Namespace 31
32 Pati + Planning an Active Directory Deploymer
Chapter 2 + The Active Directory
34 Parti + Planning an Active Directory Deploymer
charter
In This Chapter
Understanding Act
Directory domains
Developing a
domain sucio
Organizasonal
Unit sucre
In This Chapter
Understanding Act
Directory domains
Developing a
domain sucio
Organizasonal
Unit sucre
36 Pati + Planning an Active Directory Deploymer
rectory Structure,
Directory Srucure 39
ectory Sruaure 41
42 Pati + Panning an Active Directory Deÿ
ectorySruaure 43
48 Pati + Panning an Active D
ectory Sruaure 49
50 Pati + Planning an Activo D
ctor Sure 51
52 Pari + Planning an Active Directory Deploymer
lanning an Active Directory Structure
hile were on the subject of NT domain limitations, a more serious limit
aM database limit isthe POC. In Windows NT domains, only tne PDC ha
ofthe databace ll BDOS have a read-only copy of the database. This
uses two prob
1. Changes: Only the POC has a witble copy ofthe dtabase. Changes must
made on the PDC, or on BDC thal connecte with the PDC and makes the
the POC database. In large domain spread
several diferent bulléngs.r even
2. Load: The domain can grow only o large because the PO
load. ni can quickly become 100 a
Windows 2000 leaves this legacy behind wi
sole the implementation with your row, whieh soles alto! potential problems!
53
hile were on the subject of NT domain limitations, a more serious limit
aM database limit isthe POC. In Windows NT domains, only tne PDC ha
ofthe databace ll BDOS have a read-only copy of the database. This
uses two prob
1. Changes: Only the POC has a witble copy ofthe dtabase. Changes must
made on the PDC, or on BDC thal connecte with the PDC and makes the
the POC database. In large domain spread
several diferent bulléngs.r even
2. Load: The domain can grow only o large because the PO
load. ni can quickly become 100 a
Windows 2000 leaves this legacy behind wi
sole the implementation with your row, whieh soles alto! potential problems!
53
54 Par + Planning an Activo D
ectory Srudure 55
56 Pati + Planning an Active Directory Deploym
ectory Srudure 57
58 Pari + Planning an Active Directory Deploymer
ctor Sruaure 59
60 Pati + Planning an Active Directory Deploymer
curler
In This Chapter
pared
NT dora
Migrating to the
sve Diecory
In This Chapter
pared
NT dora
Migrating to the
sve Diecory
62 Pati + Planning an Active Directory Deploymer
The POC Emulator prior
atabase, but NT BDOs have no cono 4
ory dea to BOE a ala tre and em using LAN
Manager Replication Seve. (Wind
& funtion a PDG performed, the POC Emultor perorms as well
However, to other Windows 2000 doman controllers, the POC Emulator appears and lune
tions as jus another domain controller. You use the POC Emula her
omain controler to crete, mod. or delete Active Dir sin ac, Ine POC
Emulator role is invisible k a Sees
atabase, but NT BDOs have no cono 4
ory dea to BOE a ala tre and em using LAN
Manager Replication Seve. (Wind
& funtion a PDG performed, the POC Emultor perorms as well
However, to other Windows 2000 doman controllers, the POC Emulator appears and lune
tions as jus another domain controller. You use the POC Emula her
omain controler to crete, mod. or delete Active Dir sin ac, Ine POC
Emulator role is invisible k a Sees
64
Part! + Planning an Active Directory Deployme
What you have a POC that is geting ld? You do not want to replace 1
ator upgrading 2000, you want Ja PDG as a emple Wi
Because your POC contains your user and group accounts
< thal 1 becomes a simple member server. Beca ory peer
Part! + Planning an Active Directory Deployme
What you have a POC that is geting ld? You do not want to replace 1
ator upgrading 2000, you want Ja PDG as a emple Wi
Because your POC contains your user and group accounts
< thal 1 becomes a simple member server. Beca ory peer
‘computers
Xénon
Exchange 2000
Xénon
Exchange 2000
70 Pat! + Planning an Active Directory De
72 Pari + Planing an Active Directory Deploymer
74
Part + Planning an Active Di
Part + Planning an Active Di
76 Pari + Planning an Active Directory Deploymer
78 Pari + Planning an Active Directory Deploymer
CHAPTER
In This Chapter
Understanding Act
Directory ates
Exploring the
necessity of ses
Understanding the
bridgehead
sidering the final
‘ite planning seps
In This Chapter
Understanding Act
Directory ates
Exploring the
necessity of ses
Understanding the
bridgehead
sidering the final
‘ite planning seps
80 Pati + Planning an Active Directory Deploymer
+ Planning Act
82 Pati + Planning an Active Directory Deploym
5 + Planning Act
88 Pati + Planning an Active Directory Deploymer
90 Pati + Planning an Active D)
94 Pat! + Planning an Active D)
5 + Planning Act
96 Pati + Planning an Active Directory Deploymer
CHAPTER
In This Chapter
Examining domain
controles
Understanding the
root domain
Exploring insalation
requirements
saling the root
domain
In This Chapter
Examining domain
controles
Understanding the
root domain
Exploring insalation
requirements
saling the root
domain
Directory
Chapter 6 + Installing the Root Domai
Ale system is ike a folder in ag cabinet. Te fe sytem provides a way for your
Operating system to ore daa in à logical, organized manner. Without à fle sytem, your
support FAT FAT, and NTFS
FAT (Fle Alocation Table) isan older le system. FAT was around when hard disks were
rather small In fat FAT should not be used on dicks larger than MB. (When was the at
time you saw a drive hat small You can use ton dvesup lo 4G but FAT does ot make
so of orage space once you move away tam the 51 ¡MB colin. an guess,
Fas provided in Windows 2000 for backward compatiblity,
Windows 95 OSF2 indows 98. FAT32 can make good use of space on larger
Windows 2000 senices and options will ot work on FAT or FAT, he FAT, RTS is pro
Finally the new NTFS with Windows 2000 makes excallent use of storage space and sup
of choice in Windows 2000 and is required for an Active Directory installation. |
Ale system is ike a folder in ag cabinet. Te fe sytem provides a way for your
Operating system to ore daa in à logical, organized manner. Without à fle sytem, your
support FAT FAT, and NTFS
FAT (Fle Alocation Table) isan older le system. FAT was around when hard disks were
rather small In fat FAT should not be used on dicks larger than MB. (When was the at
time you saw a drive hat small You can use ton dvesup lo 4G but FAT does ot make
so of orage space once you move away tam the 51 ¡MB colin. an guess,
Fas provided in Windows 2000 for backward compatiblity,
Windows 95 OSF2 indows 98. FAT32 can make good use of space on larger
Windows 2000 senices and options will ot work on FAT or FAT, he FAT, RTS is pro
Finally the new NTFS with Windows 2000 makes excallent use of storage space and sup
of choice in Windows 2000 and is required for an Active Directory installation. |
Directory
enafren
In This Chapter
bostaling adaitonal
domain controles
Creating child
domains
Forming grandes
Consrucing a
Managing opera
Uninsaling the
Director
In This Chapter
bostaling adaitonal
domain controles
Creating child
domains
Forming grandes
Consrucing a
Managing opera
Uninsaling the
Director
the Active Directory
128
the Active Directory
the Active Directory
Directory
142
the Active Directory
the Active Directory
charter
In This Chapter
domain mixed lo
Contguring must
relationships
Configuring ste links
and se link bridges
In This Chapter
domain mixed lo
Contguring must
relationships
Configuring ste links
and se link bridges
8 + Configuring Active Directory Domains and Sites 147
Directory
8 + Configuring Active Directory Domains and tes 149
Part I + Im the Active Directory
8 + Configuring Active Directory Domains and Sites
154
ing the Active Directory
ing the Active Directory
8 + Configuring Active Directory Domains and Sites
=
=
8 + Configuring Active Directory Domains and Sites 157
Canale Window Y
Canale Window Y
+ Configuring Active Directory Dom:
8 + Configuring Active Directory Domains and Sites
Directory
8 + Configuring Active Directory Domains and Sites 163
8 + Configuring Active Directory Domains and Sites 165
166
the Active Directory
the Active Directory
charter
In This Chapter
Creating and
‘managing user
managing group
In This Chapter
Creating and
‘managing user
managing group
a the Active Directory
‘hepter9 + Setting Up Users, Groups, and Computers 169
apler 9 + Setting Up Users, Groups, and Computers 171
Directory
Chapter 9 + Setting Up Users, Groups, and Computers
Seat new unts with the Adive Directory Users and Computers
The rt ut ma Separ DD wie pecto the
Acive Directory using a tet ile that can be imported tothe Atve Directory However, you
(an only create accounts with CSVDE—not deat or change the
The second utity is Lightweight Directory Access Protocol Interchange Format (LDIFD
hich enables to ou to create, delete, and manage bulk impor ao
Tolan more about either uty, just ype CSVDEor LDIFDE a the command prompt and
173
Seat new unts with the Adive Directory Users and Computers
The rt ut ma Separ DD wie pecto the
Acive Directory using a tet ile that can be imported tothe Atve Directory However, you
(an only create accounts with CSVDE—not deat or change the
The second utity is Lightweight Directory Access Protocol Interchange Format (LDIFD
hich enables to ou to create, delete, and manage bulk impor ao
Tolan more about either uty, just ype CSVDEor LDIFDE a the command prompt and
173
the Active Directory
Up Users, Groups, and Computers
H
Directory
apter 9 + Setting Up Users, Groups, and Computers
180
the Active Directory
the Active Directory
aptor9 + Setting Up Users, Groups, and Computers 181
apter 8 + Setting Up Users, Groups, and Computers 183
Table 9-1
Windows 2000 Group Scopes
Windows 2000 Group Scopes
apler 9 + Setting Up Users, Groups, and Computers 185
a the Active Directory
apier9 + Setting Up Users, Groups, and Computers 187
Tags
Categories
GeneralDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 385
- Slides 205
- Age 5688 days
Related Slideshows
22
Pray For The Peace Of Jerusalem and You Will Prosper
RodolfoMoralesMarcuc
32 views
26
Don_t_Waste_Your_Life_God.....powerpoint
chalobrido8
35 views
31
VILLASUR_FACTORS_TO_CONSIDER_IN_PLATING_SALAD_10-13.pdf
JaiJai148317
32 views
14
Fertility awareness methods for women in the society
Isaiah47
30 views
35
Chapter 5 Arithmetic Functions Computer Organisation and Architecture
RitikSharma297999
29 views
5
syakira bhasa inggris (1) (1).pptx.......
ourcommunity56
30 views