This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
LDAP Provides a Way to Communicate with Active LDAP Provides a Way to Communicate with Active Directory by Specifying Unique Naming Paths for Directory by Specifying Unique Naming Paths for Each Object in the Directory Each Object in the Directory
• Active Directory Logical StructureActive Directory Logical Structure
DomainsDomains
Organizational UnitsOrganizational Units
Trees and ForestsTrees and Forests
DomainsDomains
A Domain Is a Security BoundaryA Domain Is a Security Boundary
A domain administrator can administer only A domain administrator can administer only within the domain, unless explicitly granted within the domain, unless explicitly granted administration rights in other domainsadministration rights in other domains
A Domain Is a Unit of ReplicationA Domain Is a Unit of Replication
Domain controllers in a domain participate Domain controllers in a domain participate in replication and contain a complete copy in replication and contain a complete copy of the directory information for their domainof the directory information for their domain
Network Administrative ModelNetwork Administrative ModelNetwork Administrative ModelNetwork Administrative Model
Use OUs to Group Objects into a Logical Hierarchy Use OUs to Group Objects into a Logical Hierarchy That Best Suits the Needs of Your OrganizationThat Best Suits the Needs of Your Organization
Delegate Administrative Control over the Objects Delegate Administrative Control over the Objects Within an OUWithin an OU by Assigning Specific Permissions to by Assigning Specific Permissions to Users and GroupsUsers and Groups
Active Directory:Active Directory:Enables a single administrator to centrally manage Enables a single administrator to centrally manage resourcesresourcesAllows administrators to easily locate information Allows administrators to easily locate information Allows administrators to group objects into OUsAllows administrators to group objects into OUsUses Group Policy to specify policy-based settingsUses Group Policy to specify policy-based settings
Managing the User EnvironmentManaging the User Environment
Use Group Policy to:Use Group Policy to:Control and lock down what users can doControl and lock down what users can do