Directory Services CS5493/7493. Directory Services Directory services represent a technological breakthrough by integrating into a single management tool:

Slides:



Advertisements
Similar presentations
Communication and Networking Services Networking Services.
Advertisements

Network+ Guide to Networks, Fourth Edition
Naming Computer Engineering Department Distributed Systems Course Asst. Prof. Dr. Ahmet Sayar Kocaeli University - Fall 2014.
Active Directory: Final Solution to Enterprise System Integration
Understanding Active Directory
Directory Services BICS 565. What is a Directory Service (DS)? A service that allows users to lookup information about entities in an organization Entities.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
Exchange server Mail system Four components Mail user agent (MUA) to read and compose mail Mail transport agent (MTA) route messages Delivery agent.
1 Chapter 1 Introduction to Windows Server Two main goals for Net Admin Make network resources available to users Files, folders, printers, etc.
Hands-On Microsoft Windows Server 2003 Administration Chapter 5 Administering File Resources.
Chapter 4 Introduction to Active Directory and Account Management
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
Network+ Guide to Networks, Fourth Edition Chapter 1 An Introduction to Networking.
Windows 2000 Remote Access. Remote Access Overview With Windows 2000 remote access, remote access clients connect to remote access servers and are transparently.
Chapter 8: Network Operating Systems and Windows Server 2003-Based Networking Network+ Guide to Networks Third Edition.
3.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.
Network+ Guide to Networks, Fourth Edition Chapter 8 Network Operating Systems and Windows Server 2003-Based Networking.
By Karan Oberoi.  A directory service (DS) is a software application- or a set of applications - that stores and organizes information about a computer.
Understanding Active Directory
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.
© N. Ganesan, Ph.D., All rights reserved. Active Directory Nanda Ganesan, Ph.D.
A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 10: Remote Access.
Directory and File Transfer Services Chapter 7. Learning Objectives Explain benefits offered by centralized enterprise directory services such as LDAP.
Overview of Active Directory Domain Services Lesson 1.
Overview of Active Directory Domain Services Lesson 1.
Chapter 11: Directory Services. Directory Services A directory service is a database that contains information about all objects on the network. Directory.
Module D Panko and Panko Business Data Networks and Security, 9 th Edition © 2013 Pearson Education, Inc. Publishing as Prentice Hall.
Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.
MCTS Guide to Configuring Microsoft Windows Server 2008 Active Directory Chapter 3: Introducing Active Directory.
Network+ Guide to Networks, Fourth Edition Chapter 1 An Introduction to Networking.
GRID Centralized management of the Globus grid-mapfile Carlo Rocca INFN, Catania.
Chapter 9: Novell NetWare
The Directory A distributed database Distributed maintenance.
Local Area Networks (LAN) are small networks, with a short distance for the cables to run, typically a room, a floor, or a building. - LANs are limited.
Basic Concepts of a Computer Network
Windows 2000 Operating System -- Active Directory Service COSC 516 Yuan YAO 08/29/2000.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.
Active Directory Windows2003 Server. Agenda What is Active Directory What is Active Directory Building an Active Directory Building an Active Directory.
September 18, 2002 Windows 2000 Server Active Directory By Jerry Haggard.
Linux+ Guide to Linux Certification, Second Edition Chapter 14 Network Configuration.
DFS & Active Directory Joshua Hedges |Brandon Maxfield | Robert Rivera | Will Zilch.
Module 7 Active Directory and Account Management.
Active Directory. Computers in organizations Computers are linked together for communication and sharing of resources There is always a need to administer.
1 Introduction to Microsoft Windows 2000 Windows 2000 Overview Windows 2000 Architecture Overview Windows 2000 Directory Services Overview Logging On to.
Secure Networking Windows 2000 Distributed Security Services Sandeep Joshi Group 4.
LDAP Authentication Copyright © Liferay, Inc. All Rights Reserved. No material may be reproduced electronically or in print without written permission.
 Identify Active Directory functions and Benefits.  Identify the major components that make up an Active Directory structure.  Identify how DNS relates.
Network Infrastructure Microsoft Windows 2003 Network Infrastructure MCSE Study Guide for Exam
OVERVIEW OF ACTIVE DIRECTORY
Introduction to Active Directory
1 Chapter 13: RADIUS in Remote Access Designs Designs That Include RADIUS Essential RADIUS Design Concepts Data Protection in RADIUS Designs RADIUS Design.
MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter Three Managing Recipients.
1 Active Directory Service in Windows 2000 Li Yang SID: November 2000.
Active Directory. Computers in organizations Computers are linked together for communication and sharing of resources There is always a need to administer.
Introduction to computer networking Objective: To be acquainted with: The definitions of networking Network topology Network peripherals, hardware and.
CEG 2400 Fall 2012 Directory Services Active Directory Tree Domain.
1 CEG 2400 Fall 2012 Directory Services Directory Services eDirLDAP Active Directory.
Active Directory Domain Services (AD DS). Identity and Access (IDA) – An IDA infrastructure should: Store information about users, groups, computers and.
Planning an Active Directory Deployment Lesson 1.
COMP1321 Digital Infrastructure Richard Henson March 2016.
1 Directory Services  What is a Directory Service?  Directory Services model  Directory Services naming model  X.500 and LDAP  Implementations of.
Understand User Authentication LESSON 2.1A Security Fundamentals.
Computer and Internet Basics
Overview of Active Directory Domain Services
Objectives Differentiate between the different editions of Windows Server 2003 Explain Windows Server 2003 network models and server roles Identify concepts.
An Introduction to Computer Networking
Network+ Guide to Networks, Fourth Edition
Windows Active Directory Environment
ACTIVE DIRECTORY An Overview.. By Karan Oberoi.
Presentation transcript:

Directory Services CS5493/7493

Directory Services Directory services represent a technological breakthrough by integrating into a single management tool: –Authentication –Access control –Accounting

Directory Services A directory service organizes data into objects. The directory holds the objects. The directory service provides the tools for accessing and modifying the objects.

Directory Service Objects These objects consist of a name and a group of attributes associated with the name. The object name is formally known as the object’s “Distinguished Name” An object can be a service, hardware, or user.

Directory Service Examples A phonebook – entries in the phonebook are indexed by name. The name has a phone number and address associated with the name. DNS – maps human readable names of network resources to their respective (binary) numeric network address.

Software Engineered D.S. A software engineered directory service stores, organizes, and provides access to electronic information in a directory. DNS was the first Internet directory service.

X.500 A standard model for general-purpose directory services was developed in the late 1980’s. The X.500 standard emerged from this effort in A series of supplementary editions and refinements to X.500 followed.

X.500 Refinements Shadowing (copying) directory information Access controls Additional administrative capabilities Contexts – define actions for an object according to the context of the objects use. Additional security features

X.500 Concept There is a single directory information tree (DIT) The DIT is a hierarchical organization of objects distributed across one or more servers. Provides the protocol for querying and updating objects in the DIT.

X.500 Legacy The general framework of X.500 has been adopted in more popular (widely adapted) directory services like: –LDAP, lightweight directory access protocol. OpenLDAP is available for Linux. –MicroSoft Active Directory

LDAP Defines a simple protocol that will manage directory objects: –Search and retrieve –Add –Modify –Delete –Rename LDAP uses a client-server model.

LDAP Model LDAP uses a client-server model. The LDAP protocol uses TCP/IP

LDAP Protocol The LDAP client establishes a connection to an LDAP server. The LDAP protocol usually uses port 389. The client must authenticate itself to the server by supplying a distinguished name and password. The LDAP server can restrict access to directory objects by managing permissions (access control)

MS Active Directory A collection of services for managing resources in a computer network (LAN, MAN, CAN, or WAN).

The AD Collection of Services AD Lightweight Directory Service AD Federation Service AD Certificate Service AD Rights Management Service AD Domain Service

AD Lightweight Directory Service A lightweight version of AD based on LDAP.

AD Federation Service A single sign-on service allowing a user to access services in different network environments using AD-FS. The different network environments can be different companies running AD-FS.

AD Certificate Service Issues public key certificates used for such things as authentication with smart cards; or encrypting data transmitted over a network. This service can renew or revoke certificates.

AD Rights Management Service Goes beyond access control. AD-RMS manages (controls) what users can do with data once they have accessed the data. –Can prevent files from being copied (this includes disabling cut and paste. –Prevent saving or forwarding messages.

AD Domain Services The traditional features of AD from previous versions.

Active Directory Summary A hierarchical framework of data objects. AD objects are categorized as –Resources: computers, printers, etc. –Services like –Users and groups of users –Any real component and its attributes

Active Directory Summary A logical structure = grouping objects together based on criteria other than physical location. A physical structure = grouping objects together based on a physical topology (all the users, equipment, and services located in a particular office building).

Active Directory Summary Acts as the central point for managing object security Individual user policies can be defined Group policies can be defined Auditing features: –Monitoring object usage –Create reports on object usage –Notify personnel of object usage

Active Directory Summary Objects are organized into containers called Organizational Units (OU). Organizational Units belong to a domain. A domain is an administrative boundary. All the objects in a domain operate with the same security policy.

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.