© Compiled by David Brewster 19016 Networking Diploma – Orange Group S1 2009 Class Presentation: Operations Master Roles.

Slides:



Advertisements
Similar presentations
Active Directory and Group Policy Blackhat Amsterdam Raymond Forbes.
Advertisements

By Rashid Khan Lesson 5-Directory Assistance: Administration Using Active Directory Users and Computers.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 6 Managing and Administering DNS in Windows Server 2008.
Lesson 16: Configuring Domain Controllers
Windows Server ® 2008 Active Directory ® Domain Services Infrastructure Planning and Design Series Published: February 2008 Updated: July 2009.
Chapter 6 Introducing Active Directory
Chapter 4 Chapter 4: Planning the Active Directory and Security.
6.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
3.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.
CS603 Active Directory February 1, 2001.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
3.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.
Hands-On Microsoft Windows Server 2008
Chapter 7 WORKING WITH GROUPS.
Hands-On Microsoft Windows Server 2008
Vikram Thakur Introduction to Active Directory Structure.
Chapter 4: Active Directory Design and Security Concepts
Week 2 - Domain Controllers and Operations Masters
Module 1: Installing Active Directory Domain Services
Module 1: Installing Active Directory Domain Services
Overview of Active Directory Domain Services Lesson 1.
Lesson 17. Domains and Active Directory. Objectives At the end of this Presentation, you will be able to:
Overview of Active Directory Domain Services Lesson 1.
Nassau Community College
Directory services Unit objectives
11 REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS Chapter 1.
70-294: MCSE Guide to Microsoft Windows Server 2003 Active Directory, Enhanced Chapter 7: Active Directory Replication.
Session 6 Windows Platform Dina Alkhoudari. Learning Objectives What is Active Directory Logical components of active directory Physical components of.
Windows Server 2008 Chapter 4 Last Update
Understand Active Directory Infrastructure
Active Directory Boundaries - Purpose Replication Boundaries Security Boundaries.
SERVER I SLIDE: 6. SERVER I Topics: Objective 4.3: Deploy and configure the DNS service Objective 5.1: Install domain controllers.
Active Directory Operations Masters. Overview  Active Directory updates generally multimaster Changes can be made on any DC  Some exceptions — single.
Maintaining Active Directory Domain Services
CN1276 Server Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+
Module 7 Active Directory and Account Management.
Session 7 Windows Platform Eng. Dina Alkhoudari. Learning Objectives Active Directory review Managing users and groups Single Master Operations Delegation.
Company Confidential 1 A Course on Global Catalog And Flexible Single Master Operations (Fsmo) Roles Prepared for: *Stars* New Horizons Certified Professional.
Module 1: Introduction to Active Directory Infrastructure
Operations Master / FSMO Roles in Active Directory : Suhail Ashfaq Butt.
Global Catalog and Flexible Single Master Operations (FSMO) Roles
Page 1 Active Directory and DNS Lecture 2 Hassan Shuja 09/14/2004.
Introduction to Active Directory Domain Services
Module 1: Implementing Active Directory ® Domain Services.
10.1 © 2004 Pearson Education, Inc. Exam Designing a Microsoft ® Windows ® Server 2003 Active Directory and Network Infrastructure Lesson 10: Planning.
Hands-On Microsoft Windows Server 2008 Chapter 4-Part 1 Introduction to Active Directory and Account Manager.
1 Chapter Overview Managing Object and Container Permissions Locating and Moving Active Directory Objects Delegating Control Troubleshooting Active Directory.
Chapter 4- Part3. 2 Implementing User Profiles A local user profile is automatically created at the local computer when you log on with an account for.
Installing a Domain Controller
Module 12: Managing Operations Masters
© Wiley Inc All Rights Reserved. MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition.
Hussain Ali Department of Computer Engineering KFUPM, Dhahran, Saudi Arabia Active Directory.
Global Catalog and Flexible Single Master Operations (FSMO) Roles BAI516.
11 GLOBAL CATALOG AND FLEXIBLE SINGLE MASTER OPERATIONS (FSMO) ROLES Chapter 4.
1 Implementing Active Directory Planning Active Directory Implementation Installing Active Directory Operations Master Roles Implementing an Organizational.
CEG 2400 Fall 2012 Directory Services Active Directory Tree Domain.
MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition (70-294) Chapter 1: Overview of the Active.
Module 9: Managing Operations Masters. Overview Introduction to Operations Master Roles Transferring and Seizing Operations Master Roles Planning the.
Active Directories: Purpose and Structure Chrystom Ciganko IFMG352 Final Presentation.
Module 2: Implementing an Active Directory Forest and Domain Structure.
Active Directory Replication (Part 1) Paige Verwolf Support Professional Microsoft Corporation © 1999 Microsoft Corporation. All rights reserved.
Global Catalog and Flexible Single Master Operations (FSMO) Roles
Active Directory Fundamentals
Active Directory and Group Policy
Global Catalog and Flexible Single Master Operations (FSMO) Roles
Microsoft Windows Server 2003 Active Directory Infrastructure
Chapter 4: Planning the Active Directory and Security
FSMO Roles and Global Catalog Servers
Unit 5 NT1330 Client-Server Networking II Date: 7/12/2016
Global Catalog and Flexible Single Master Operations (FSMO) Roles
Presentation transcript:

© Compiled by David Brewster Networking Diploma – Orange Group S Class Presentation: Operations Master Roles

Lesson: Operations Master Roles2 In Active Directory, all domain controllers are equivalent All DC’s perform tasks such as: Multimaster replication system

Lesson: Operations Master Roles3 Operations Master Roles …however, some tasks must be performed individually Are individual roles performed by specific Domain Controllers Also known as: –Flexible Single Master Operations (FSMOs) –Operations Masters –Single Master Roles

Lesson: Operations Master Roles4 Five roles in total Domain Roles Forest Roles PDC Emulator Schema Master Domain Naming RID Master Infrastructure

Lesson: Operations Master Roles5 Forest-wide Roles Domain Naming Role : Used when requests are made for adding or removing domains in the forest – it updates the namespaces. Must be placed on a Global Catalog server

Lesson: Operations Master Roles6 Steps for changing/viewing Domain Naming Role :

Lesson: Operations Master Roles7 Steps continued…

Lesson: Operations Master Roles8 Steps continued…

Lesson: Operations Master Roles9 Schema Master Role The Domain Controller performing this role also holds the forest’s “schema”. All other DCs only have a read-only copy of the Schema The Schema is very advanced, and rarely are changes made to it Special steps are required to view this role (demonstration)

Lesson: Operations Master Roles10 Domain-wide Roles Steps for changing/viewing all three Domain-wide roles :

Lesson: Operations Master Roles11 Steps continued… Successful transfer: Failed transfer:

Lesson: Operations Master Roles12 Relative Identifier (RID) Role This role is crucial for the creation of Security Identifiers (SIDs) for users, computers and groups RIDs are like stamps for SIDs to make sure that all SIDs are unique The server holding the RID role distributes unique RIDs across the entire domain.

Lesson: Operations Master Roles13 Infrastructure Master Role In multi-domain environments, there are often users that are members of groups in other domains Each group has an attribute which contains each user’s ‘distinguished name’. Queries the closest Global Catalog server to make sure references are correct

Lesson: Operations Master Roles14 PDC Emulator Role Emulates a Windows NT Primary Domain Controller for backwards compatibility Performs special password updates for the domain Manages Group Policy updates for the domain Provides a time source for the domain Acts as the domain master browser This role performs many important tasks:

Lesson: Operations Master Roles15 Good Role Placement Practices Co-locate the Schema and Domain Naming roles Place the Infrastructure master on a DC that is not a GC Keep the RID Master and PDC Emulator roles close By default all roles are performed on the first DC created, which is undesirable for anything other than very small networks. Good practices include:

Lesson: Operations Master Roles16 Worse case scenario – Seizing Roles When disaster strikes and DCs holding one or more of the five roles go offline and are unable to be recovered, the only option is to seize the role from another domain controller. Seizing a role is a forceful action and should only be done when there is no other choice.

Lesson: Operations Master Roles17 The End

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.