Presentation is loading. Please wait.

Presentation is loading. Please wait.

11 REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS Chapter 1.

Published byEileen Lamb Modified over 9 years ago

Similar presentations

Presentation on theme: "11 REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS Chapter 1."— Presentation transcript:

1 11 REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS Chapter 1

2 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS2 OVERVIEW  Describe the function of directory services on a Microsoft Windows Server 2003 network.  Differentiate between the physical and logical components of the Active Directory directory service.  Understand the elements involved in planning an Active Directory implementation.  Determine the appropriate placement of global catalog servers.  Determine where universal group membership caching should be implemented.  Describe the function of directory services on a Microsoft Windows Server 2003 network.  Differentiate between the physical and logical components of the Active Directory directory service.  Understand the elements involved in planning an Active Directory implementation.  Determine the appropriate placement of global catalog servers.  Determine where universal group membership caching should be implemented.

3 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS3 UNDERSTANDING THE ROLE OF DIRECTORY SERVICES  Forms core of network  Stores information about computers, applications, services, and users  Builds upon the version of Active Directory in Windows 2000 Server, but the two cannot coexist in the same forest  Forms core of network  Stores information about computers, applications, services, and users  Builds upon the version of Active Directory in Windows 2000 Server, but the two cannot coexist in the same forest

4 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS4 UNDERSTANDING THE LOGICAL COMPONENTS OF ACTIVE DIRECTORY  Domains  Trees  Forests  Organizational units  Domains  Trees  Forests  Organizational units

5 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS5 DOMAINS  Primary mechanism of grouping users, computers, and services together  Provide an administrative boundary within Active Directory  Can comprise one or more physical locations  Primary mechanism of grouping users, computers, and services together  Provide an administrative boundary within Active Directory  Can comprise one or more physical locations

6 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS6 TREES

7 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS7 FORESTS

8 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS8 ORGANIZATIONAL UNITS

9 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS9 DOMAIN AND FOREST FUNCTIONAL LEVELS  Provide a way to enable certain features of Active Directory on a per-domain or forest- wide basis  Can be raised, provided all domain controllers in the domain or forest support the higher level  Provide a way to enable certain features of Active Directory on a per-domain or forest- wide basis  Can be raised, provided all domain controllers in the domain or forest support the higher level

10 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS10 DOMAIN FUNCTIONAL LEVELS  Windows 2000 Mixed (default)  Windows 2000 Native  Windows Server 2003 Interim  Windows Server 2003  Windows 2000 Mixed (default)  Windows 2000 Native  Windows Server 2003 Interim  Windows Server 2003

11 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS11 FOREST FUNCTIONAL LEVELS  Windows 2000 (default)  Windows Server 2003 Interim  Windows Server 2003  Windows 2000 (default)  Windows Server 2003 Interim  Windows Server 2003

12 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS12 UNDERSTANDING THE PHYSICAL COMPONENTS OF ACTIVE DIRECTORY  Sites  Domain controllers  Sites  Domain controllers

13 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS13 SITES  Collections of one or more well-connected IP subnets  Allow authentication and replication traffic to be managed  Collections of one or more well-connected IP subnets  Allow authentication and replication traffic to be managed

14 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS14 DOMAIN CONTROLLERS  Physical storage locations for Active Directory databases  Can be any systems running Windows 2000 Server or Window Server 2003  Use multimaster replication  Physical storage locations for Active Directory databases  Can be any systems running Windows 2000 Server or Window Server 2003  Use multimaster replication

15 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS15 INSTALLING ACTIVE DIRECTORY  Using the Active Directory Installation Wizard  Using an answer file to perform an unattended installation  Using the network or backup media  Using the Configure Your Server Wizard  Using the Active Directory Installation Wizard  Using an answer file to perform an unattended installation  Using the network or backup media  Using the Configure Your Server Wizard

16 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS16 INSTALLING ACTIVE DIRECTORY BY USING THE ACTIVE DIRECTORY INSTALLATION WIZARD

17 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS17 INSTALLING ACTIVE DIRECTORY BY USING AN ANSWER FILE

18 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS18 INSTALLING ACTIVE DIRECTORY BY USING THE NETWORK OR BACKUP MEDIA  Allows a member server to become a domain controller by the restore of Active Directory data  Useful in scenarios in which large amounts of replication traffic cannot be accommodated  Allows a member server to become a domain controller by the restore of Active Directory data  Useful in scenarios in which large amounts of replication traffic cannot be accommodated

19 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS19 INSTALLING ACTIVE DIRECTORY BY USING THE CONFIGURE YOUR SERVER WIZARD

20 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS20 DEPLOYING GLOBAL CATALOG SERVERS  The global catalog stores information about all Active Directory objects from all domains in a single forest.  Windows Server 2003 creates one global catalog server automatically when Active Directory is installed.  At least one additional global catalog server should be configured for fault tolerance.  Placement of global catalog servers requires careful planning.  The global catalog stores information about all Active Directory objects from all domains in a single forest.  Windows Server 2003 creates one global catalog server automatically when Active Directory is installed.  At least one additional global catalog server should be configured for fault tolerance.  Placement of global catalog servers requires careful planning.

21 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS21 CONFIGURING GLOBAL CATALOG SERVERS

22 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS22 UNDERSTANDING UNIVERSAL GROUP MEMBERSHIP CACHING  Helps to reduce the number of universal group membership queries that must be forwarded across a WAN link  Provides flexibility for the placement of global catalog servers  Implemented on a site-by-site basis  Helps to reduce the number of universal group membership queries that must be forwarded across a WAN link  Provides flexibility for the placement of global catalog servers  Implemented on a site-by-site basis

23 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS23 IMPLEMENTING UNIVERSAL GROUP MEMBERSHIP CACHING  Disabled by default  Once enabled, applies to the entire site  Configured by using Active Directory Sites and Services  Disabled by default  Once enabled, applies to the entire site  Configured by using Active Directory Sites and Services

24 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS24 SUMMARY  Logical components of Active Directory include domains, trees, forests, and organizational units.  A domain is a security and administrative boundary. Users on a Windows Server 2003 network authenticate at the domain level.  A tree is a group of one or more domains that share transitive trust relationships.  A forest is a group of one or more trees that share a single root domain, a schema, and a global catalog.  In Windows Server 2003, domains operate at one of four different functional levels.  Logical components of Active Directory include domains, trees, forests, and organizational units.  A domain is a security and administrative boundary. Users on a Windows Server 2003 network authenticate at the domain level.  A tree is a group of one or more domains that share transitive trust relationships.  A forest is a group of one or more trees that share a single root domain, a schema, and a global catalog.  In Windows Server 2003, domains operate at one of four different functional levels.

25 Chapter 1: REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS25 SUMMARY (CONTINUED)  Windows Server 2003 introduces the three forest functional levels.  Physical components of Active Directory include sites and domain controllers.  Domain controllers host a copy of the Active Directory database and can be used to authenticate logons.  The deployment of global catalog servers throughout an Active Directory site infrastructure requires careful planning.  Windows Server 2003 introduces a new feature known as universal group membership caching.  Windows Server 2003 introduces the three forest functional levels.  Physical components of Active Directory include sites and domain controllers.  Domain controllers host a copy of the Active Directory database and can be used to authenticate logons.  The deployment of global catalog servers throughout an Active Directory site infrastructure requires careful planning.  Windows Server 2003 introduces a new feature known as universal group membership caching.

Download ppt "11 REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS Chapter 1."

Similar presentations

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 6 Managing and Administering DNS in Windows Server 2008.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 6 Managing and Administering DNS in Windows Server 2008.
Lesson 16: Configuring Domain Controllers

Lesson 16: Configuring Domain Controllers
70-294: MCSE Guide to Microsoft Windows Server 2003 Active Directory, Enhanced Chapter 1: Introduction to Active Directory.

70-294: MCSE Guide to Microsoft Windows Server 2003 Active Directory, Enhanced Chapter 1: Introduction to Active Directory.
Chapter 6 Introducing Active Directory

Chapter 6 Introducing Active Directory
Chapter 4 Chapter 4: Planning the Active Directory and Security.

Chapter 4 Chapter 4: Planning the Active Directory and Security.
Introduction to Active Directory

Introduction to Active Directory
3.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.

3.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
Administering Active Directory

Administering Active Directory
By Rashid Khan Lesson 4-Preparing to Serve: Understanding Microsoft Networking.

By Rashid Khan Lesson 4-Preparing to Serve: Understanding Microsoft Networking.
Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.

Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.
Chapter 4 Introduction to Active Directory and Account Management

Chapter 4 Introduction to Active Directory and Account Management
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
Introduction to Dfs. Limits of Dfs 260 characters per file path 32 alternatives per volume 1 Dfs root per server Unlimited Dfs roots per domain Volumes.

Introduction to Dfs. Limits of Dfs 260 characters per file path 32 alternatives per volume 1 Dfs root per server Unlimited Dfs roots per domain Volumes.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.
3.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.

3.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.
Understanding Active Directory

Understanding Active Directory
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.
Chapter 7 WORKING WITH GROUPS.

Chapter 7 WORKING WITH GROUPS.
Active Directory Implementation Class 4

Active Directory Implementation Class 4

Similar presentations

Ads by Google