Documente Academic
Documente Profesional
Documente Cultură
Configuration partition
deals with the topology of Active Directory
Schema partition
Contains information that defines object classes and attributes used within the domain.
Policy-Based Administration
Control desktop settings that determine the display properties of a computer. Assign scripts that run at logon, logoff, startup, and shutdown. Enforce password security, such as by setting minimum password lengths, maximum length of time before a password must be changed, and so on. Redirect folders from the local computer to a folder on a networked computer Deploy applications
Prepared by: MTGuillermo 4
Naming Scheme
Domain Name System (DNS) User principal name (UPN) Universal Naming Convention (UNC) Uniform Resource Locator (URL) Lightweight Directory Access Protocol Uniform Resource Locator (LDAP URL)
Distinguished Name
CN
The common name of the object
OU
The organizational unit. These are containers in the directory that are used to hold objects
DC - domain component
Computers
container is used to store computer objects
Domain Controllers
container contains objects representing DCs that reside in the domain
Users
container is used to store user accounts and groups. container is used to store stray objects whose containers no longer exist.
LostAndFound System
container is used for system settings
Prepared by: MTGuillermo 9
10
Shortcut Trust
11
Forest trust
12
REAL TRUST
13
External Trust
14
Subnets
container is used to create and store objects containing information about subnetsBon your network.
15
16
Cacls
Used to view and modify discretionary access control lists (DACLs) on files.
Cmdkey
Used to create, list, and delete usernames, passwords, and credentials.
Csvde
Used to import and export data from the directory.
Dcgpofix
Restores Group Policy Objects (GPOs) to the state they where in when initially installed
Prepared by: MTGuillermo 17
18
19
special permissions
provide additional access control
20
Standard permissions
Full Control
Allows the user to change permissions, take ownership, and have the abilities associated with all other standard permissions.
Read
Allows the user to view objects, attributes, ownership, and permissions on an object.
Write
Allows the user to change attributes on an object.
Delete
All Child Objects Allows the user to delete objects from an OU.
21
Windows 2003
The highest functionality level for Active Directory. used when there are only Windows Server 2003 DCs in the domain
22
New Features Available Only with Windows Server 2003 Domain/Forest Functionality
Domain Controller Renaming Tool Domain Rename Utility Forest Trusts Dynamically Links Auxiliary Classes Disabling Classes Replication Raise Domain and Forest Functionality
Prepared by: MTGuillermo
23