?

Log in

cptnotes

Networking

« previous entry | next entry »
Mar. 31st, 2006 | 09:58 am
posted by: null_variable in cptnotes

Recap stuff we did in lab

Active Directory - database based on LDAP (LDAP is an open standard)
- stores objects
- objects have attributes
- extensible
*schema – the skeletal form

Install active directory by running dcpromo.exe from the command line. This also makes a computer a “domain controller.”

DNS has to be setup and running for Active Directory to function.

DNS resolves domain names, or FQDNs (fully qualified domain name) to IP addresses (forward lookup zone).
*Reverse zone resolves IP’s to names.

Users are objects in the database as well.

Default users are stored in the “users” container. A container is not an organizational unit. A container cannot have “rules” (for lack of a better term) applied. Organizational units can have rules applied to it. These rules are called group policies. However, group policies have nothing to do with groups. Group policies are horribly named. They are policies that can be grouped together. They’re rules that you as an administrator can actually define.

Groups: a collection of users with similar rights and permissions. If you have a bunch of users with similar needs (ie printers), you can just give the whole group permissions.

A local group [domain?] is a group that exists on just a computer or a server, but it is a group that exists on one box and one box only. Local groups can contain global and universal groups.

A global group is made up of users of a global domain.

In Windows 2000 & 2003 server, there is a universal group. Universal groups can contain users from any domain [within your forest].

Link | Leave a comment | Share


Comments {2}

Kaytlyn Elizabeth Anne

From: null_variable
Date: Apr. 2nd, 2006 09:18 pm (UTC)
Link

*grins* Yipee!

Reply | Parent | Thread