01-introduction to active directory.pptx

8/10/2019 01-Introduction to Active Directory.pptx

1/20

Christopher Chapman | MCT

Content PM, Microsoft Learning, PDG Planning , Microsoft


2/20

Meet Christopher Chapman

Background IT manager and implementer focused on deploying,

maintaining and optimizing networks of all sizes (fromSMB to Enterprise)

IT Consulting projects include Custom SharePoint forMicrosoft IT, Netware/Notes migration to AD/Exchange,

Transition to centralized management (250 clients)

Instructor and Director of Instruction

Contact [email protected]

@ChristopherMSL
https://twitter.com/stevenborghttps://twitter.com/stevenborghttps://twitter.com/stevenborg


3/20

Course Topics

Understanding Active Directory

01 | Introduction to Active Directory

02 | Active Directory Domain Services (DS)

03 | Active Directory Certificate Services (CS)

04 | Active Directory Federation Services (FS)

05 | Active Directory Rights Management Services (RMS)

06 | Active Directory Lightweight Directory Services (LDS)


4/20

Setting Expectations

Target Audience IT Help Desk staff interested in moving into Network/Syste

Administration

Anyone interested in learning more about Active Director

Suggested Prerequisites/Supporting Material Microsoft Technology Associate:

Exam 98-349: Windows Operating System Fundamentals

Exam 98-365: Windows Server Administration Fundamentals

Exam 98-366: Networking Fundamentals

Exam 98-367: Security Fundamentals


5/20

MVA

Introduction to Active Directory


6/20

Active Directory isnt what it used to be!

What is Active Directory?

Active Directory Roles

Module Overview


7/20

What is Active Directory? A collection of services (Server

Roles and Features) used tomanage identity and accessfor and to resources on anetwork

What is Active Directory

DomainServices

InternalAccounts

Authorization Authentication

FederationServices

NetworkAccess forExternalResources

RightsManagementServices

ContentSecurity andControl

Active Directory

Identity Access Centralized

Management


8/20

AD Domain Services (AD DS) Users, Computers, Policies

AD Certificate Services (AD CS) Service, Client, Server and User identification

AD Federation Services (AD FS) Resource access across traditional boundaries

AD Rights Management Services (AD RMS) Maintain security of data

AD Lightweight Directory Services (AD LDS)

Active Directory Roles


9/20

What is Active Directory

Domain Services? A directory service is both

the directory informationsource and the service thatmakes the information

available and usableA phone book

What is AD DS?WindowsServer

Mgmt Profile Network Info

Printers Shares

Windows

User

AccountInformation

Privileges Profiles Policies

EmailServers

MailboxInformation

AddressBook

Applications

ServerConfig

SSO App-Specific

Directory

Info

Active DirectoryDomain Services

Manageability Security

Interoperability


10/20

Scalable, secure, and manageable infrastructure for u

resource management stores and manages information about network resources

provides support for directory-enabled applications such Microsoft Exchange Server

allows for centralized management

What does AD DS do?


11/20

AD CS is the Microsoft

implementation of Public KeyInfrastructure (PKI)

PKI is a set of hardware, software,people, policies, and procedures

needed to create, manage,distribute, use, store, and revokedigital certificates

What is AD CS?

Revocation Reques

CertificRevocat

List

CRLRetrieval

5

x.509 Certifica

CertificateRetrieval 4

CertificaSignin

Reque

CertificateRepository

CertificationRevocationRepository

2


12/20

AD CS provides customizable services for issuing and

digital certificates Certification Authorities

CA Web Enrollment

Online Responders

Network Device Enrollment Service (NDES) Certificate Enrollment Web Service

Certificate Enrollment Policy Web Service

What does AD CS do?


13/20

A software

componentthat facilitatesthe cross-organizational

access ofsystems andapplications

What is AD FS?

Account PartnerOrganization

ReOr

Account

FederationServer

AD DS

Federation Trust


14/20

The AD FS server role provides simplified, secured id

federation and Web single sign-on (SSO) capabilities enables the creation of trust relationships between two or

provides access to applications between organizations

provides Single Sign-on (SSO) between two different direcWeb-based applications

What does AD FS do?

h


15/20

Active Directory Rights

Management Services(AD RMS) is aninformation protectiontechnology that works

with applications tosafeguard digitalinformation

What is AD RMS?

RMSServer

InformationAuthor

h d S d ?


16/20

Allows individuals and administrators to specify acces

permissions to documents, workbooks, and presenta prevent sensitive information from being printed, forward

by unauthorized people

access and usage restrictions are enforced no matter wheinformation is located

What does AD RMS do?

Wh i AD LDS?


17/20

AD LDS is a hierarchical

file-based directory store AD LDS is both the

directory informationsource and the service that

makes the informationavailable and usable

What is AD LDS?

WindowsUser

AccountInformation

Privileges Profiles Policies

EmailServers

MailboxInformation

AddressBook

Active Directory LDS

Manageability Security

Interoperability

Wh t d AD LDS d ?


18/20

Lightweight Directory Access Protocol (LDAP)

Directory service that provides flexible support for directoapplications, without the dependencies and domain-relateof AD DS

provide directory services for directory-enabled applicatioincurring the overhead of domains and forests

no requirement for a single schema throughout a forest

What does AD LDS do?


19/20

Thanks for Watching


20/20

2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Office, Azure, System Center, Dynamics and other produc t names are or may be registered trade

U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this pre

must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of

the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

01-introduction to active directory.pptx

Documents