active directory and application
TRANSCRIPT
![Page 1: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/1.jpg)
By Amin Pathan (MTech-CSE Pursuing, BE-IT)
![Page 2: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/2.jpg)
Technical overview of Windows 2003 Active Directory
Introduction to Windows 2003 Active Directory in application mode
Windows 2003 Reviewer’s Guide
![Page 3: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/3.jpg)
What is Active Directory Building an Active Directory Using Active Directory Features Active Directory Objects Auditing Active Directory
![Page 4: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/4.jpg)
![Page 5: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/5.jpg)
Directory services of the Windows server system
Stores information about network object and makes the information available to administrators, users, and applications
Provides a single point of network management allowing people to add, remove, and relocate users and resources easily
Integrated with Internet’s hierarchical domain naming system
![Page 6: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/6.jpg)
Integration with DNS Flexible querying Information security Simplified administration Scalability
![Page 7: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/7.jpg)
Objects are the basic entities that constitute the Active Directory◦ Each object will have it own globally unique
identifier (GUID) Schema
◦ Describes the object classes◦ Defines the attributes for the object classes
![Page 8: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/8.jpg)
Objects based hierarchical structure with constructs◦ Domains◦ Trees◦ Forests◦ Trust relationships◦ Organizational Units◦ Sites
![Page 9: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/9.jpg)
![Page 10: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/10.jpg)
![Page 11: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/11.jpg)
Parent and child domains in a domain tree. Double-headed arrows indicate two-way transitive trust relationships
![Page 12: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/12.jpg)
One forest with three domain trees. The three root domains are not contiguous with each other, but
EuropeRoot.com and AsiaRoot.com are child domains of HQ-Root.com.
![Page 13: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/13.jpg)
Shortcut trusts between Domains B and D, and between Domains D and 2
![Page 14: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/14.jpg)
Transitive Two-way Shortcut trusts External trusts
![Page 15: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/15.jpg)
![Page 16: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/16.jpg)
Intra-site replication with just one domain .
![Page 17: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/17.jpg)
Intra-site replication with two domains and two global catalogs
![Page 18: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/18.jpg)
Based on standard directory protocols Interoperate with other protocols Example: LDAP
(Lightweight Directory Access Protocol)◦ LDAP it is used to add, modify, delete and query
information stored in AD◦ LDAP to AD is like SQL to Oracle◦ LDAP determines how a client can access the
directory, operations within the directory and share directory data
![Page 19: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/19.jpg)
Based on Kerberos Supports multiple security configurations
for cross platform interoperability ◦ Clients: A domain controller will authenticate
clients running RFC-1510 Kerberos. This will include other clients running other operating systems.
◦ Unix clients and services: A Kerberos principal is mapped to a Windows 2000 user or computer account
![Page 20: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/20.jpg)
Installation Of Active Directory
![Page 21: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/21.jpg)
The computer must be Windows 2k, 2k3 Server, Advanced Server or Datacenter Server.
At least one volume on the computer must be formatted with NTFS.
DNS must be active on the network prior to AD installation or be installed during AD installation.
DNS must support SRV records and be dynamic. The computer must have IP protocol installed and
have a static IP address. The Kerberos v5 authentication protocol must be
installed. Time and zone information must be correct.
![Page 22: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/22.jpg)
![Page 23: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/23.jpg)
DCPROMO
![Page 24: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/24.jpg)
![Page 25: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/25.jpg)
![Page 26: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/26.jpg)
![Page 27: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/27.jpg)
![Page 28: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/28.jpg)
![Page 29: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/29.jpg)
![Page 30: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/30.jpg)
![Page 31: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/31.jpg)
![Page 32: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/32.jpg)
![Page 33: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/33.jpg)
•Clients use DNS to locate Active Directory controllers.
•Servers and client computers register their names and IP addresses with the DNS server
![Page 34: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/34.jpg)
![Page 35: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/35.jpg)
![Page 36: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/36.jpg)
![Page 37: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/37.jpg)
![Page 38: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/38.jpg)
![Page 39: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/39.jpg)
![Page 40: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/40.jpg)
![Page 41: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/41.jpg)
![Page 42: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/42.jpg)
![Page 43: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/43.jpg)
![Page 44: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/44.jpg)
![Page 45: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/45.jpg)
![Page 46: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/46.jpg)
![Page 47: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/47.jpg)
![Page 48: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/48.jpg)
![Page 49: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/49.jpg)
![Page 50: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/50.jpg)
![Page 51: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/51.jpg)
![Page 52: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/52.jpg)
![Page 53: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/53.jpg)
![Page 54: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/54.jpg)
![Page 55: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/55.jpg)
Existing Domain Member Server
![Page 56: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/56.jpg)
![Page 57: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/57.jpg)
![Page 58: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/58.jpg)
![Page 59: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/59.jpg)
![Page 60: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/60.jpg)
![Page 61: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/61.jpg)
![Page 62: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/62.jpg)
![Page 63: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/63.jpg)
Users Computers Groups
![Page 64: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/64.jpg)
![Page 65: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/65.jpg)
![Page 66: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/66.jpg)
![Page 67: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/67.jpg)
![Page 68: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/68.jpg)
![Page 69: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/69.jpg)
![Page 70: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/70.jpg)
![Page 71: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/71.jpg)
![Page 72: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/72.jpg)
![Page 73: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/73.jpg)
![Page 74: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/74.jpg)
![Page 75: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/75.jpg)
![Page 76: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/76.jpg)
![Page 77: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/77.jpg)
![Page 78: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/78.jpg)
![Page 79: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/79.jpg)
![Page 80: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/80.jpg)
![Page 81: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/81.jpg)
Defines the various components of the users desktop environment that an administrator must manage
Applies not only to user and client computers but also to member servers, domain controllers, and other 2003 server in scope of management
![Page 82: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/82.jpg)
Manage registry-based policy with Administrative Templates
Assign scripts. This includes scripts such as computer startup, shutdown, logon, and logoff
redirect folders, such as My Documents and My Pictures, from the Documents and Settings folder on the local computer to network locations
![Page 83: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/83.jpg)
![Page 84: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/84.jpg)
![Page 85: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/85.jpg)
![Page 86: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/86.jpg)
Audit related functional activities
![Page 87: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/87.jpg)
Account logon and logon events Object access Account management Directory service access Policy change System events Process tracking Privilege
![Page 88: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/88.jpg)
Logon/Logout User access to resources
◦ File, folder, registry key, printer etc. Account management
◦ Create users and groups, modify membership, change password etc.
Systems events◦ Service start/stop
Directory service access◦ User’ access to Active Directory objects
![Page 89: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/89.jpg)
![Page 90: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/90.jpg)
![Page 91: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/91.jpg)
www.microsoft.com www.windowsitpro.com www.visualwin.com http://www.microsoft.com/technet/prodtechnol/wi
ndowsserver2003/library/DepKit/d2ff1315-1712-48e4-acdc-8cae1b593eb1.mspx
http://en.wikipedia.org/wiki/Active%5FDirectory http://www.microsoft.com/technet/prodtec
hnol/windowsserver2003/technologies/directory/activedirectory/stepbystep/domcntrl.mspx#EFAA
![Page 92: Active directory and application](https://reader037.vdocuments.us/reader037/viewer/2022110204/55d57b18bb61eb685b8b459f/html5/thumbnails/92.jpg)