ACTIVE DIRECTORY DOMAIN SERVICE
It is a centralized database management system that store information about user,computer,groups,printers,security settings,server configuration,Network infrastructure configuration and so on centrally.
#Directory service(DS):-Developed by IETF.
Directory service define the relationship between two object in any manner.It use protocol called LDAP (Lightweight directory access protocol) port no 389.
#AD DS has following features:-
It is a centralized database management system that store information about user,computer,groups,printers,security settings,server configuration,Network infrastructure configuration and so on centrally.
#Directory service(DS):-Developed by IETF.
Directory service define the relationship between two object in any manner.It use protocol called LDAP (Lightweight directory access protocol) port no 389.
#AD DS has following features:-
- It manages user logon process,authentication and directory searches.
- It manages the communication between user and domains.
- It stores directory data (called directory store), also AD DS has a mechanism to locate and retrieve information from the system.
- By using AD DS, we can implement a centralized control all the available resources (like user, computers and data access) inside the company.
- Server running AD DS is called as domain controler.
#Component of AD DS:-
#Forest:-
- It is a grouping or hierarchical arrangement of one or more separate independent domain trees.
- It has highest level in the Active Directory.
- It is the logical security boundary for an Enterprise.
- It shares the sinfle database and a single global address list.
- It contains one or more domain container objects like Directory Structure,Global Catalog and Directory Schema etc.
- A forest contains multiple domain trees.The first domain in the forest is called as a Forest Root Domain.
- By default a user or administrator of one forest cannot access another forest.
#Domain:-
- It is logical security boundary that store information about user,group,computer,printer etc.
- It have a fully Qualified domain name(FQDN) that identified a domain name in enterprise network.
- A Domain is managed by a physical machine known as Domain controller.
- A domain managed by a domain controller is used to provide authentication service and authorization for the objects stored in its database.
- All domain controllers hold a copy of the domain database, this domain database is continuously synchronized.
#Domain Tree:-
- Two or more Domains that share common schema and global catalog.
- It is a collection of domains grouped together in a hierarchical structure.
- Domain tree support parent-child concept(parent domain and child domain)
- It contains Namespace like enhanceofit.com(parent domain) and delhi.enhanceofit.com(child domain of parent).
No comments:
Post a Comment