Saturday, April 21, 2007

Active Directory Concept in a SMTP25Shell

Here is some of the short bullet point for the core concept

  • Active Directory is a directory service, it is DataBase ( NTDS.DIT)
  • Domain: Boundary of Authentication
  • Domain: Boundary of DNS name space
  • Domain: Boundary of replication
  • Domain Controller: Authentication Server
  • Schema: Definition of an Object
  • Object: User, printer, OU, Group
  • Attribute: properly of an Object
  • Tree: Contiguous namespace
  • OU : Active Directory Object

Active Directory Naming is based on Lightweight Directory Application Protocol (RFC 1777)

Domain Name service & System (DNS).

DC

Domain Component

O

Organization

OU

Organization Unit

CN

Command Name


Tree: Hierarchy if Domains forming a contiguous namespace, mapping the DNS infrastructure

FSO Roles (Operation Masters) or DR PIS as Thomas Called today in our MCSE Class , What can I say you the MAN Thomas (-:

Having trouble to remembering FSMO Roles, After Thomas advice you will never forget DR PIS? (Doctor PIS)

D

Domain Naming Master

1 per forest

Controls the addition and removal of domains from the forest

R

RID Master

1 per domain

Allocates pools of unique identifiers to domain controllers for use when creating objects

P

PDC Emulator

1 per domain

Provides backwards compatibility for NT4 clients for PDC operations (like password changes). The PDC Emulator also runs domain specific processes such as the Security Descriptor Propogator (SDPROP), and is the master time server within the domain

I

Infrastructure Master

1 per domain

Synchronizes cross-domain group membership changes. The infrastructure master cannot run on a global catalog server (unless all DCs are also GCs.)

S

Schema Master

1 per forest

Controls updates to the Schema


If you have 12 Domain in a same forest how may FSMO roles you will have?

Let's do the math

Answer: 38


Primary functions of OU

Delegate permissions

Organize Objects

Deploy Group policies


In which order Group Polices gets installed?

L

Local

S

Site

D

Domain

O

OU


Oz Ozugurlu

oz@SMTP25.org

Http://Smtp25.blogspot.com (blog)

http://www.msexchange911.org/ (forums

http://www.exchange911.org/cblog/index.php (Blog)

Http://www.consultusa.us (Blog)

No comments: