ACTIVE DIRECTORY
Active Directory (AD)
is a Microsoft technology used to manage
computers and other devices on a network.
It is a primary feature of Windows Server, an
operating system that runs both local and
Internet-based servers. It allows network
administrators to create and manage
domains, users, and objects within a network
For example, an admin can create a group of
users and give them specific access privileges to
certain directories on the server. As a network
grows, Active Directory provides a way to
organize a large number of users into logical
groups and subgroups, while providing access
control at each level.
THE BENEFITS OF ACTIVE DIRECTORY
- It provides authentication services for
Windows based computers.
- Allows administrators to assign, deploy
software, policies, and apply critical
updates to an entire organization.
- Stores information and settings relating to
an organization in a central, organized,
accessible database.
ACTIVE DIRECTORY COMPONENTS
1. Forest - One or more trees make up the forest,
and each tree has its own namespace
2. Domain Trees - One or more domains with
contiguous namespace.
3. Domains - A logical unit or grouping of
computers and networking resources that
defines a security boundary
4. Organizing Units - A division of an Active
Directory where users, groups, machines, and
other organizational units can be inserted
TYPES OF ACTIVE DIRECTORY
1. Security Groups - Use to assign
permissions to shared resources
2. Distribution Groups - Use to create
email distribution lists
HOW DOES ACTIVE DIRECTORY WORK?
Every domain controller that an organization typically has, has a
copy of the whole domain's directory. To keep them all current,
changes made to the directory on one domain controller, such as
changing a user's password or deleting a user account, are
replicated to the other domain controllers.
Users and applications can locate objects in any domain of their
forest by using a Global Catalog server, which is a Domain
Controller that keeps a complete copy of all objects in it
domain's directory and a partial copy of all objects in all other
domains in the forest