Document Actions
What is active directory?
Download the handout prepared by Bob Swipes, Senior Microcomputer Technical Support Specialist from Erie1 BOCES, that explains what a directory service is; what it does; and what the advantages of a centralized system to automate network management are.
(What is a Directory Service.pdf
- 67Kb)
• What is a Directory Service?
o A place where information about valid users is stored
o Directory service provides a place to store information about network-based
entities, such as applications, files, printers, or people.
o Provides a consistent way to name, describe, locate, access and mange about
resources.
o Directory is the central point of control and management for the network
operating system.
• Why Use a Directory Service?
o Simplifies management
o Stronger Security
o Promotes Interoperability
• Benefits of Active Directory
o Windows Users
Account Info
Permissions / Rights
Profiles
Policies
o Network Services
DHCP
DNS
Share Points
Policies
o Applications
Server Configuration
Single Sign-On
Application-Specific Policies
o Delegation of Control
Hierarchical Design
Granular Delegation
Controlled Administrative Access
o Other Directories
Synchronization
Security
Industry Standard
Access
o Device Configuration
Standard Configuration
Quality of Service
Security
• Definitions
o Domain
AD - Logical grouping of users and computers managed through a
central shared accounts database
DNS – a boundary of responsibility. Partition of a large, distributed
database.
Internet Domain Name and AD name do NOT have to be the
same!
o Organization Unit
An Active Directory object that can contain other object
Also called a Container object
o Class
An object that can be created in AD
Users, computers, printers and file shares are examples of instances
of classes
o Group Policy
Method of granting permissions and user rights
Can be used to restrict user actions
Can be applied locally or via Domain Organizational Units
o A place where information about valid users is stored
o Directory service provides a place to store information about network-based
entities, such as applications, files, printers, or people.
o Provides a consistent way to name, describe, locate, access and mange about
resources.
o Directory is the central point of control and management for the network
operating system.
• Why Use a Directory Service?
o Simplifies management
o Stronger Security
o Promotes Interoperability
• Benefits of Active Directory
o Windows Users
Account Info
Permissions / Rights
Profiles
Policies
o Network Services
DHCP
DNS
Share Points
Policies
o Applications
Server Configuration
Single Sign-On
Application-Specific Policies
o Delegation of Control
Hierarchical Design
Granular Delegation
Controlled Administrative Access
o Other Directories
Synchronization
Security
Industry Standard
Access
o Device Configuration
Standard Configuration
Quality of Service
Security
• Definitions
o Domain
AD - Logical grouping of users and computers managed through a
central shared accounts database
DNS – a boundary of responsibility. Partition of a large, distributed
database.
Internet Domain Name and AD name do NOT have to be the
same!
o Organization Unit
An Active Directory object that can contain other object
Also called a Container object
o Class
An object that can be created in AD
Users, computers, printers and file shares are examples of instances
of classes
o Group Policy
Method of granting permissions and user rights
Can be used to restrict user actions
Can be applied locally or via Domain Organizational Units
PDF Tips and Tricks