Presentation is loading. Please wait.

Presentation is loading. Please wait.

© Wiley Inc. 2006. All Rights Reserved. MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition.

Published byErika Sharon McCoy Modified over 9 years ago

Similar presentations

Presentation on theme: "© Wiley Inc. 2006. All Rights Reserved. MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition."— Presentation transcript:

1 © Wiley Inc. 2006. All Rights Reserved. MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition (70-294) Chapter 5: Administering the Active Directory

2 Organizational Unit Contents 2 © Wiley Inc. 2006. All Rights Reserved. Users Groups Computers Shared folders Contacts Printers Other OUs

3 Purpose of OUs 3 © Wiley Inc. 2006. All Rights Reserved. To organize the objects within Active Directory Delegation of administrative control Do not take the place of standard user and group permissions Contain objects only from within the domain in which they reside

4 Benefits of OUs 4 © Wiley Inc. 2006. All Rights Reserved. Smallest unit to which you can assign directory permissions Can easily change the OU structure OU structure can support many different levels of hierarchy Child objects can inherit OU settings Can set Group Policy settings on OUs Easily delegate administration of OUs (and objects within) to users and groups

5 Considerations for OU Naming 5 © Wiley Inc. 2006. All Rights Reserved. Keep the names and descriptions simple Pay attention to limitations Pay attention to hierarchical consistency

6 OU Inheritance 6 © Wiley Inc. 2006. All Rights Reserved. By default, OUs inherit the permissions of the parent container when the OU is moved By using built-in tools provided with Windows Server 2003, you can move or copy OUs only within the same domain

7 Delegation of Administrative Control 7 © Wiley Inc. 2006. All Rights Reserved. Delegation occurs when a higher security authority assigns permissions to a lesser security authority Allows you to distribute the various roles and responsibilities of IT throughout the organization Two main concerns: –Parent-child relationships –Inheritance settings

8 Group Policies 8 © Wiley Inc. 2006. All Rights Reserved. Collections of permissions that you can apply to objects within the Active Directory Assigned at the site, domain, and OU levels

9 Creating OUs 9 © Wiley Inc. 2006. All Rights Reserved. Active Directory Users and Computers allows you to quickly add/move/change OUs Operation can be tedious for large organizations

10 Moving, Deleting, and Renaming OUs 10 © Wiley Inc. 2006. All Rights Reserved. Accomplished with Active Directory Users and Computers tool Allow you to reflect real-world changes to business units, departments, and employee roles

11 OU Properties 11 © Wiley Inc. 2006. All Rights Reserved. Properties can be modified Use Active Directory Users and Computers tool and right-click on the OU, then select Properties

12 Delegating Control 12 © Wiley Inc. 2006. All Rights Reserved. Use Delegation of Control Wizard Accessed through the Active Directory Users and Computers administrative tool

13 Common OU Problems 13 © Wiley Inc. 2006. All Rights Reserved. Inheritance Delegation of administration Organizational issues

14 Organizational Sections of AD Users and Computers Tool 14 © Wiley Inc. 2006. All Rights Reserved. Built-In Computers Domain controllers Foreign security principals Users

15 AD Objects to Create and Manage 15 © Wiley Inc. 2006. All Rights Reserved. Computer Contact Group Organizational Unit Printer Shared Folder User

16 Properties for Users 16 © Wiley Inc. 2006. All Rights Reserved. General Address Account Profile Telephones Organization Member Of Dial-in Environment Sessions Remote Control Terminal Services Profile COM+

17 Properties for Groups 17 © Wiley Inc. 2006. All Rights Reserved. General Operating System Member Of Location Managed By Dial-in

18 Filter Options 18 © Wiley Inc. 2006. All Rights Reserved. Choose filter objects by their specific types Access from the View menu in the MMC, and choose Filter Options

19 Publishing AD Objects 19 © Wiley Inc. 2006. All Rights Reserved. Publishing makes an AD object available Two main publishable objects: –Printer objects –Shared Folder objects General process is unchanged from earlier versions of Windows

Download ppt "© Wiley Inc. 2006. All Rights Reserved. MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition."

Similar presentations

By Rashid Khan Lesson 5-Directory Assistance: Administration Using Active Directory Users and Computers.

By Rashid Khan Lesson 5-Directory Assistance: Administration Using Active Directory Users and Computers.
MOAC : Installing and Configuring Windows Server 2012

MOAC : Installing and Configuring Windows Server 2012
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.
Chapter 6 Introducing Active Directory

Chapter 6 Introducing Active Directory
7.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.

7.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
3.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.

3.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.
Hands-On Microsoft Windows Server 2003 Administration Chapter 4 Managing Group Policy.

Hands-On Microsoft Windows Server 2003 Administration Chapter 4 Managing Group Policy.
9.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.

9.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
MIS 431 - Chapter 91 Ch. 9 – Implement and Use Group Policy MIS 431 – created Spring 2006.

MIS Chapter 91 Ch. 9 – Implement and Use Group Policy MIS 431 – created Spring 2006.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 10: Server Administration.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 10: Server Administration.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 9: Implementing and Using Group Policy.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 9: Implementing and Using Group Policy.
Administering Active Directory

Administering Active Directory
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 4: Implementing and Managing Group and Computer Accounts.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 4: Implementing and Managing Group and Computer Accounts.
Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.

Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 4: Implementing and Managing Group and Computer Accounts.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 4: Implementing and Managing Group and Computer Accounts.
Chapter 5: Configuring Users and Groups. Windows Vista User Accounts User accounts are the primary means of authentication Built-in Accounts –Administrator:

Chapter 5: Configuring Users and Groups. Windows Vista User Accounts User accounts are the primary means of authentication Built-in Accounts –Administrator:
Chapter 4 Introduction to Active Directory and Account Management

Chapter 4 Introduction to Active Directory and Account Management
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 10: Server Administration.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 10: Server Administration.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 4: Implementing and Managing Group and Computer Accounts.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 4: Implementing and Managing Group and Computer Accounts.
7.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 7: Introducing Group Accounts.

7.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 7: Introducing Group Accounts.

Similar presentations

Ads by Google