1 CEG 2400 Fall 2012 Directory Services Directory Services eDirLDAP Active Directory.

Slides:



Advertisements
Similar presentations
Chapter 7 LAN Operating Systems LAN Software Software Compatibility Network Operating System (NOP) Architecture NOP Functions NOP Trends.
Advertisements

How to Succeed with Active Directory Robert Williams, PhD CEO Secure Logistix Corporation.
Naming Computer Engineering Department Distributed Systems Course Asst. Prof. Dr. Ahmet Sayar Kocaeli University - Fall 2014.
Active Directory: Final Solution to Enterprise System Integration
70-294: MCSE Guide to Microsoft Windows Server 2003 Active Directory, Enhanced Chapter 1: Introduction to Active Directory.
Introduction to Network Administration. Objectives.
Chapter 4 Chapter 4: Planning the Active Directory and Security.
3.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.
CS603 Directory Services January 30, Name Resolution: What would you like? Historical? –Mail –Telephone DNS? X.500 / LDAP? DCE? ActiveDirectory?
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
Systems Architecture, Fourth Edition1 Internet and Distributed Application Services Chapter 13.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
Windows 2000 Remote Access. Remote Access Overview With Windows 2000 remote access, remote access clients connect to remote access servers and are transparently.
Chapter 8: Network Operating Systems and Windows Server 2003-Based Networking Network+ Guide to Networks Third Edition.
3.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.
Network+ Guide to Networks, Fourth Edition Chapter 8 Network Operating Systems and Windows Server 2003-Based Networking.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Application Layer Functionality and Protocols Network Fundamentals – Chapter.
Naming And Directory Services Geetika Sharma 09/22/200 8 CSC8320.
Understanding Active Directory
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.
A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.
Lesson 17. Domains and Active Directory. Objectives At the end of this Presentation, you will be able to:
Overview of Active Directory Domain Services Lesson 1.
Chapter 11: Directory Services. Directory Services A directory service is a database that contains information about all objects on the network. Directory.
Directory services Unit objectives
11 REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS Chapter 1.
OU Passwords What they all mean. What is a password Webster’s Online Dictionary describes a password as “a sequence of characters required for access.
Module D Panko and Panko Business Data Networks and Security, 9 th Edition © 2013 Pearson Education, Inc. Publishing as Prentice Hall.
BASIC NETWORK CONCEPTS (PART 6). Network Operating Systems NNow that you have a general idea of the network topologies, cable types, and network architectures,
23/4/2001LDAP Overview - HEPix - LAL 2001 LDAP Overview HEPix – LAL Apr Michel Jouvin
The Directory A distributed database Distributed maintenance.
Microsoft Active Directory(AD) A presentation by Robert, Jasmine, Val and Scott IMT546 December 11, 2004.
Windows 2000 Active Directory Service COSC 513 Yongquan Cai 03/10/2001.
USM Regional PeopleSoft Conference
Windows 2000 Operating System -- Active Directory Service COSC 516 Yuan YAO 08/29/2000.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.
Chapter Two Defining Network Objects. Chapter Objectives Describe how a workstation communicates with the network, and list the software components required.
Directory Service
Implementing LDAP Client/Server System for Directory Service By Maochun Sun Project Advisor: Dr. Chung-E Wang Department of Computer Science California.
Chapter Two Clients and Servers: Who’s the Boss?.
2Object-Oriented Analysis and Design with the Unified Process Objectives  Describe the differences and similarities between relational and object-oriented.
Name & Directory Services Yang Wang. Outline Why and What? Some important Terms. How to do? History and Implementation. Example and Experiment References.
Lecture 5: User Accounts & Directory Service Instructor: Dr. Najla Al-Nabhan
Introduction to Microsoft Windows 2000 Integrated support for client/server and peer-to-peer networks Increased reliability, availability, and scalability.
 Identify Active Directory functions and Benefits.  Identify the major components that make up an Active Directory structure.  Identify how DNS relates.
Introduction to Microsoft Windows 2000 Welcome to Chapter 1 Windows 2000 Server.
By Rashid Khan Lesson 6-Building a Directory Service.
OVERVIEW OF ACTIVE DIRECTORY
Introduction to Active Directory
1 Active Directory Service in Windows 2000 Li Yang SID: November 2000.
Logical and Physical Network Design 1. Active Directory Objects Objects Represent Network Resources (Users,Groups,Computers,Printers) Attributes Store.
Hussain Ali Department of Computer Engineering KFUPM, Dhahran, Saudi Arabia Active Directory.
Active Directory. Computers in organizations Computers are linked together for communication and sharing of resources There is always a need to administer.
Chapter 1 : Computer Networks. Lecture 2. Computer Networks Classification: 1- Depend on the geographical area. 2- Depend on functional relationship.
CEG 2400 Fall 2012 Directory Services Active Directory Tree Domain.
Directory Services CS5493/7493. Directory Services Directory services represent a technological breakthrough by integrating into a single management tool:
1 CEG 2400 Fall 2012 eDirectory – Directory Service.
X.500 Part 1 CNS 4650 Fall 2004 Rev. 2. Introduction to X.500 X.500 is basis for most modern directory services (LDAP, NDS, Active Directory) X.500 is.
Active Directory Domain Services (AD DS). Identity and Access (IDA) – An IDA infrastructure should: Store information about users, groups, computers and.
Planning an Active Directory Deployment Lesson 1.
Windows Active Directory – What is it? Definition - Active Directory is a centralized and standardized system that automates network management of user.
1 Directory Services  What is a Directory Service?  Directory Services model  Directory Services naming model  X.500 and LDAP  Implementations of.
Client/Server Databases and the Oracle 10g Relational Database
Introduction to LDAP Frank A. Kuse.
Overview of Active Directory Domain Services
An Introduction to Computer Networking
Database.
Introduction to Name and Directory Services
Active Directory Overview
ACTIVE DIRECTORY An Overview.. By Karan Oberoi.
Presentation transcript:

1 CEG 2400 Fall 2012 Directory Services Directory Services eDirLDAP Active Directory

2 What is it? A way to store, manage, and access information about many different network objects –Directory Services plays an important role in integrating different NOS (Network Operating Systems) into one system that can be centrally administered and accessed –The directory database contains entries that store information about network objects in containers organized into a hierarchical tree structure and provides information to network services and clients Directory Services

3 The X.500 directory model (original standard) It defined directory services, how they are displayed, and how they are accessed by users –X.500 model describes it as a collection of systems that work in a client-server relationship to represent information about network objects –X.500 directory architecture - the client queries and receives responses from one or more servers in the server’s directory service, with the Directory Access Protocol (DAP) controlling communication between client and server Directory Services

4

5 X.500: Directory Information Base (DIB) –The directory database is made up of entries that contain information about objects, such as users, printers, computers, and data volumes - these objects are collectively known as the DIB –Within the DIB, each entry is made up of a collection of information fields called attributes –These attributes contain values Directory Services

6

7 X.500: Directory Information Tree (DIT) –Directory Information Base (DIB) is arranged into a tree-like structure called the DIT –To keep the directory organized, a set of rules known as the Directory Schema is enforced –The Directory Schema defines a set of attributes and valid object classes –An object class defines a type of network object, such as a user or a printer, and includes all attributes that make up that type of object Directory Services

8 X.500: Directory User and Service Agents –X.500 takes a client-server approach –The directory client, called the Directory User Agent (DUA), allows for the accessing of, and data retrieval from directory database –Processing a DUA request for information from the directory service consists of these steps: workstation-based DUA sends a request to the server-based Directory System Agent (DSA), DSA retrieves DIB data and sends it back to the DUA Directory Services

9

10 X.500: Directory Service Protocols 1.The Directory Service Protocol (DSP) controls the interaction between two or more DSAs (directory system agent) so that users can access information in the directory without knowing its exact location 2.The Directory Access Protocol (DAP) controls communication between a DUA (directory user agent) and DSA (directory system agent) 3.The Directory Information Shadowing Protocol (DISP) is a special DSP that’s responsible for keeping multiple copies of the DIB synchronized, as is necessary in the shadowing process Directory Services

11 The LDAP directory standard –Lightweight Directory Access Protocol (LDAP) was developed as a simpler version of X.500 –Although LDAP started as a simplified component of the X.500 directory, it developed into a protocol used to access information stored in a directory –LDAP supports TCP/IP –Now at version 3 Directory Services

12 Directory Services Directory Services (3 major players) –Novell Directory Services (NDS) eDirectory –LDAP –Active Directory (Microsoft) Directory Services eDirLDAP Active Directory

Some Directory Services Some LDAP/X.500 based implementations are: –Active Directory –eDirectory –Red Hat Directory Server –Open Directory (Apple’s Mac OS X Server) –Oracle Internet Directory –CA Directory –OpenDS –OpenLDAP 13

14 Using standards minimizes confusion as more servers, more users, and new directory tree objects appear –One of the most important areas for network standards is naming conventions –Balance tree depth and tree width so that distinguished names do not become too unwieldy (to wide or to deep) –Use a design approach that matches the directory tree to the organization Directory Services Tree Design

15 Design approaches involve reflecting the actual organizational structure, based on geographic locations, or using a combination of the two approaches –Two possible organizational structures: functional areas and workgroups –The functional approach is based on the classic functional business areas such as operations, sales, marketing, finance, etc. –The workgroup approach is based on workgroups, or groups of members from functional areas Directory Services Tree Design

16

17

18 Design approaches (cont.) –Some organizations create their primary organizational structure based on geographic location - in each location the directory tree can reflect a functional or workgroup structure –There may be situations where combining the functional area, workgroup and geographical approaches is warranted (so you can see there is a lot of different ways) Directory Services Tree Design

19 Location and business function

20 Location and business function

21 Location, organizational, and business function

22 So you can see, many different ways –One of the most important areas for network standards is naming conventions –Plan for the future –Once implemented, hard to make major changes –Directory Services becoming a must have for most large environments Directory Services Tree Design

Directory Services Terms Identity Management (idM) –Sometimes called Access and Identity Management (AIM) –refers to an information system, or to a set of technologies that can be used for enterprise or cross-network Identity management. –describes the management of individual identities, their authentication, authorization, roles, and privileges within or across system and enterprise boundaries 23

24 Summary Directory Services play an important role in administering and managing networks Most directory services are based on the X.500 standard, which defines protocols for the Directory Information Base, Directory Information Tree, Directory User Agent, and Directory Service Agent Directory Tree Design Identity Management

25 Directory Services Questions Directory Services eDirLDAP Active Directory

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.