01_introducción a active directory

7/26/2019 01_Introduccin a Active Directory

1/20

Christopher Chapman | MCT

Content PM, Microsoft Learning, PDG Planning , Microsoft


2/20

Meet Christopher Chapman

Background IT manager and implementer focused on deploying,

maintaining and optimizing networks of all sizes (fromSMB to Enterprise)

IT Consulting projects include Custom SharePoint forMicrosoft IT, Netware/Notes migration to AD/Exchange,

Transition to centralized management (250 clients)

Instructor and Director of Instruction

Contact [email protected]

@ChristopherMSL


3/20

Course Topics

Understanding Active Directory

01 | Introduction to Active Directory

02 | Active Directory Domain Services (DS)

03 | Active Directory Certificate Services (CS)

04 | Active Directory Federation Services (FS)

05 | Active Directory Rights Management Services (RMS)

06 | Active Directory Lightweight Directory Services (LDS)


4/20

Setting Expectations

Target Audience IT Help Desk staff interested in moving into Network/Syste

Administration

Anyone interested in learning more about Active Directory

Suggested Prerequisites/Supporting Material Microsoft Technology Associate:

Exam 98-349: Windows Operating System Fundamentals

Exam 98-365: Windows Server Administration Fundamentals

Exam 98-366: Networking Fundamentals

Exam 98-367: Security Fundamentals


5/20

MVA

Introduction to Active Directory


6/20

Active Directory isnt what it used to be!

What is Active Directory?

Active Directory Roles

Module Overview


7/20

What is Active Directory? A collection of services (Server

Roles and Features) used tomanage identity and accessfor and to resources on anetwork

What is Active Directory

DomainServices

InternalAccounts

Authorization Authentication

FederationServices

NetworkAccess for

ExternalResources

RightsManagement

Services

ContentSecurity and

Control

Active Directory

Identity Access

CentralizedManagement


8/20

AD Domain Services (AD DS) Users, Computers, Policies

AD Certificate Services (AD CS) Service, Client, Server and User identification

AD Federation Services (AD FS) Resource access across traditional boundaries

AD Rights Management Services (AD RMS) Maintain security of data

AD Lightweight Directory Services (AD LDS)

Active Directory Roles


9/20

What is Active Directory

Domain Services? A directory service is both

the directory informationsource and the service thatmakes the information

available and usable

A phone book

What is AD DS?WindowsServer

Mgmt Profile Network Info

Printers Shares

WindowsUser

AccountInformation

Privileges Profiles Policies

EmailServers

MailboxInformation

AddressBook

Applications

ServerConfig

SSO App-Specific

Directory

Info

Active DirectoryDomain Services

Manageability Security

Interoperability


10/20

Scalable, secure, and manageable infrastructure for u

resource management stores and manages information about network resources

provides support for directory-enabled applications such aMicrosoft Exchange Server

allows for centralized management

What does AD DS do?


11/20

AD CS is the Microsoft

implementation of Public KeyInfrastructure (PKI)

PKI is a set of hardware, software,people, policies, and procedures

needed to create, manage,distribute, use, store, and revokedigital certificates

What is AD CS?

Revocation Reques

CertificaRevocat

List

CRLRetrieval

5

x.509 Cer tifica

CertificateRetrieval 4

CertificaSigning

Reque

CertificateRepository

CertificationRevocationRepository

2


12/20

AD CS provides customizable services for issuing and

digital certificates Certification Authorities

CA Web Enrollment

Online Responders

Network Device Enrollment Service (NDES) Certificate Enrollment Web Service

Certificate Enrollment Policy Web Service

What does AD CS do?


13/20

A software

componentthat facilitatesthe cross-organizational

access ofsystems andapplications

What is AD FS?

Account PartnerOrganization

ReOr

Account

FederationServer

AD DS

Federation Trust


14/20

The AD FS server role provides simplified, secured ide

federation and Web single sign-on (SSO) capabilities enables the creation of trust relationships between two or

provides access to applications between organizations

provides Single Sign-on (SSO) between two different direc

Web-based applications

What does AD FS do?


15/20

Active Directory Rights

Management Services(AD RMS) is aninformation protectiontechnology that works

with applications tosafeguard digitalinformation

What is AD RMS?

RMSServer

InformationAuthor


16/20

Allows individuals and administrators to specify acces

permissions to documents, workbooks, and presentat prevent sensitive information from being printed, forward

by unauthorized people

access and usage restrictions are enforced no matter wheinformation is located

What does AD RMS do?


17/20

AD LDS is a hierarchical

file-based directory store

AD LDS is both thedirectory informationsource and the service that

makes the informationavailable and usable

What is AD LDS?

WindowsUser

AccountInformation

Privileges Profiles Policies

EmailServers

MailboxInformation

AddressBook

Active Directory LDS

Manageability Security

Interoperability


18/20

Lightweight Directory Access Protocol (LDAP) Directory service that provides flexible support for directo

applications, without the dependencies and domain-relateof AD DS

provide directory services for directory-enabled applicatioincurring the overhead of domains and forests

no requirement for a single schema throughout a forest

What does AD LDS do?


19/20

Thanks for Watching


20/20

2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Office, Azure, System Center, Dynamics and other product names are or may be regi stered trade

U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this pre

must respond to changing market conditi ons, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy ofthe date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE IN FORMATION IN THIS PRESENTATION.

01_introducción a active directory

Documents