Please enable JavaScript.
Coggle requires JavaScript to display documents.
Chapter 7.1.3 Active Directory (Default Containers (Are created by…
Chapter 7.1.3
Active Directory
Trees and Forests
Tree
A group of related domains
Share the same DNS namespace
Forest
A collection of related Domain trees
Establishes a relationship between Trees that have different namespaces
Domain
An administratively defined collection of network resources that share a common directory database and security policies
Database information is replicated within a domain
Security settings are not shared between domains
Each domain maintains its own set of relationships with other domains
Domains are identified using DNS names
The common name is the domain name itself
The distinguished name includes the DNS context or additional portions of the name
Organizational Unit
Is like a folder that subdivides and organize network resources within a domain
Is a container object
Can logically organize network resources
Simplifies security administration
Facts to know
OUs can contain other OUs or any type of leaf object (users, computers, and printers)
First level OUs are sometimes called parents
Second level OUs are sometimes called children
Default Containers
Are created by default
Cannot be created, moved, renamed, or deleted
Have very few editable properties
Cannot have Group Policy settings applied to them
Objects
Within an active directory, each resource is identified as an object
Users
Groups
Computers
Things to know about objects
Each object contains attributes (information about the object, such as a users name, phone number, and email address) which are used to locate and secure resources
The Schema identifies the object classes, or object types, that exist in the tree and the attributes, or properties, of the object
Domain Controller
Are created by default
Cannot be created, moved, renamed, or deleted
Have very few editable properties
Global Catalog
The global catalog (GC) is a database that contains a partial replica of every object from every domain within a forest.
A server that holds a copy of the global catalog is a Global Catalog Server.
Facilitates faster searches because it doesn't require referencing different domain controllers