Active Directory directory service provides a single point of network resource manage
ment, allowing you to add, remove, and relocate users and resources easily. This chap
ter introduces you to Active Directory concepts and administration tasks and walks you
through the steps involved in planning an Active Directory infrastructure.
ment, allowing you to add, remove, and relocate users and resources easily. This chap
ter introduces you to Active Directory concepts and administration tasks and walks you
through the steps involved in planning an Active Directory infrastructure.
Active Directory provides a method for designing a directory structure that meets the
needs of your organization. This lesson introduces the concept of a directory service,
the use of objects in Active Directory, and the function of each of the Active Directory
components.
After this lesson, you will be able to
■ Explain the function of a directory service
■ Explain the purpose of Active Directory
■ Explain the purpose of the schema in Active Directory
■ Identify the components of Active Directory
■ Describe the function of Active Directory components
■ Explain the purpose of the global catalog in Active Directory
needs of your organization. This lesson introduces the concept of a directory service,
the use of objects in Active Directory, and the function of each of the Active Directory
components.
After this lesson, you will be able to
■ Explain the function of a directory service
■ Explain the purpose of Active Directory
■ Explain the purpose of the schema in Active Directory
■ Identify the components of Active Directory
■ Describe the function of Active Directory components
■ Explain the purpose of the global catalog in Active Directory
Understanding Directory Services
A directory is a stored collection of information about objects that are related to one
another in some way. For example, an e-mail address book stores names of users or
entities and their corresponding e-mail addresses. The e-mail address book listing
might also contain a street address or other information about the user or entity.
In a distributed computing system or a public computer network such as the Internet,
there are many objects stored in a directory, such as file servers, printers, fax servers,
applications, databases, and users. Users must be able to locate and use these objects.
Administrators must be able to manage how these objects are used. A directory service
stores all the information needed to use and manage these objects in a centralized loca
tion, simplifying the process of locating and managing these resources. A directory ser
vice differs from a directory in that it is both the source of the information and the
mechanism that makes the information available to the users.
A directory service acts as the main switchboard of the network operating system. It is
the central authority that manages the identities and brokers the relationships between
distributed resources, enabling them to work together. Because a directory service sup-
plies these fundamental operating system functions, it must be tightly coupled with the
management and security mechanisms of the operating system to ensure the integrity
and privacy of the network. It also plays a critical role in an organization's ability to
define and maintain the network infrastructure, perform system administration, and
control the overall user experience of a company's information systems.
A directory is a stored collection of information about objects that are related to one
another in some way. For example, an e-mail address book stores names of users or
entities and their corresponding e-mail addresses. The e-mail address book listing
might also contain a street address or other information about the user or entity.
In a distributed computing system or a public computer network such as the Internet,
there are many objects stored in a directory, such as file servers, printers, fax servers,
applications, databases, and users. Users must be able to locate and use these objects.
Administrators must be able to manage how these objects are used. A directory service
stores all the information needed to use and manage these objects in a centralized loca
tion, simplifying the process of locating and managing these resources. A directory ser
vice differs from a directory in that it is both the source of the information and the
mechanism that makes the information available to the users.
A directory service acts as the main switchboard of the network operating system. It is
the central authority that manages the identities and brokers the relationships between
distributed resources, enabling them to work together. Because a directory service sup-
plies these fundamental operating system functions, it must be tightly coupled with the
management and security mechanisms of the operating system to ensure the integrity
and privacy of the network. It also plays a critical role in an organization's ability to
define and maintain the network infrastructure, perform system administration, and
control the overall user experience of a company's information systems.
Why Have a Directory Service?
A directory service provides the means to organize and simplify access to resources of
a networked computer system. Users and administrators might not know the exact
name of the objects they need. However, they might know one or more characteristics
of the objects in question.
A directory service provides the means to organize and simplify access to resources of
a networked computer system. Users and administrators might not know the exact
name of the objects they need. However, they might know one or more characteristics
of the objects in question.
The Windows Server 2003 Directory Service
Active Directory is the directory service included in the Windows Server 2003 family.
Active Directory includes the directory, which stores information about network
resources, as well as all the services that make the information available and useful.
Active Directory is also the directory service included in Windows 2000.
Active Directory is the directory service included in the Windows Server 2003 family.
Active Directory includes the directory, which stores information about network
resources, as well as all the services that make the information available and useful.
Active Directory is also the directory service included in Windows 2000.
Active Directory Services Features
Active Directory in the Windows Server 2003 family is a significant enhancement over
the flat domain model provided in Windows NT. Active Directory is integrated within
the Windows Server 2003 family and offers the following features:
■ Centralized data store All data in Active Directory resides in a single, distrib
uted data repository, allowing users easy access to the information from any loca
tion. A single distributed data store requires less administration and duplication
and improves the availability and organization of data.
■ Scalability Active Directory enables you to scale the directory to meet business
and network requirements through the configuration of domains and trees and the
placement of domain controllers. Active Directory allows millions of objects per
domain and uses indexing technology and advanced replication techniques to
speed performance.
■ Extensibility The structure of the Active Directory database (the schema) can
be expanded to allow customized types of information.
■ Manageability In contrast to the flat domain model used in Windows NT, Active
Directory is based on hierarchical organizational structures. These organizational
structures make it easier for you to control administrative privileges and other
security settings, and to make it easier for your users to locate network resources
such as files and printers.
■ Integration with the Domain Name System (DNS) Active Directory uses
DNS, an Internet standard service that translates easily readable host names to
numeric Internet Protocol (IP) addresses. Although separate and implemented dif
ferently for different purposes, Active Directory and DNS have the same hierarchi
cal structure. Active Directory clients use DNS to locate domain controllers. When
using the Windows Server 2003 DNS service, primary DNS zones can be stored in
Active Directory, enabling replication to other Active Directory domain controllers.
No comments:
Post a Comment