Scribd
Upload
261 views64 pages

Active Directory Basics Guide

The document provides an overview of Active Directory fundamentals, including key concepts such as domains, trees, forests, domain controllers, sites, DNS, and replication. It also discusses operations masters and their roles. The agenda covers logical and physical Active Directory concepts, a 10 minute overview of DNS, an overview of Active Directory replication, and the role of operations masters. It includes demonstrations of working with domains and trusts, organizational units, sites and global catalogs, DNS, and replication.

Uploaded by

Abdulrahman Redwan
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
261 views64 pages

Active Directory Basics Guide

The document provides an overview of Active Directory fundamentals, including key concepts such as domains, trees, forests, domain controllers, sites, DNS, and replication. It also discusses operations masters and their roles. The agenda covers logical and physical Active Directory concepts, a 10 minute overview of DNS, an overview of Active Directory replication, and the role of operations masters. It includes demonstrations of working with domains and trusts, organizational units, sites and global catalogs, DNS, and replication.

Uploaded by

Abdulrahman Redwan
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 64

Active Directory Fundamentals

What Will We Cover?

• Active Directory concepts


• Domains, trees, forests
• Domain controllers, sites
• Domain Naming Service
• Replication
• Operations masters
Helpful Experience

• Experience with the Windows user interface


• Experience supporting Microsoft networks

Level 200
Agenda

• Logical Concepts of Active Directory


• Physical Concepts of Active Directory
• DNS in 10 Minutes
• Overview of Active Directory Replication
• The role played by Operations Masters
What Is a Directory Service?
A service that helps track and locate objects on a
network

Active Directory Management


What Is a Directory Service?
A service that helps track and locate objects on a
network

Active Directory Management

Workstations Services Files Users


Active Directory Domains

CONTOSO.COM
Active Directory Domains

Boundary of
Authentication

CONTOSO.COM
Active Directory Domains

Boundary of Boundary of
Authentication Policies

CONTOSO.COM
Active Directory Domains

Boundary of Boundary of
Authentication Policies

CONTOSO.COM

Boundary of Replication
Active Directory Trees

CONTOSO.COM

US.CONTOSO.COM

OHIO.US.CONTOSO.COM
Active Directory Trees
Shared
Schema
CONTOSO.COM

Configuration
US.CONTOSO.COM

Global Catalog
OHIO.US.CONTOSO.COM
Transitive Trusts

CONTOSO.COM

UK.CONTOSO.COM

US.CONTOSO.COM
Transitive Trusts

CONTOSO.COM

UK.CONTOSO.COM

US.CONTOSO.COM
Active Directory Forests

CONTOSO.COM FABRIKAM.COM

US.CONTOSO.COM UK.FABRIKAM.COM

Global
Schema Configuration
Catalog
Demo
demonstration
Reviewing Domains and Trusts
Organizational Units

CONTOSO.COM
Organizational Units
Organized For:
•Administration
•Same
•Same Requirements
Requirements
•Delegation
•Delegation

OU Admin

CONTOSO.COM
Organizational Units
Organized For:
•Administration
•Same
•Same Requirements
Requirements
•Delegation
•Delegation
•Group Policy
•Configuration
•Configuration
OU Admin

OU Policy
CONTOSO.COM
Organizational Units
Organized For:
•Administration
•Same
•Same Requirements
Requirements
•Delegation
•Delegation
•Group Policy
•Configuration
•Configuration
•Security
•Security
OU Admin

OU Security OU Policy
CONTOSO.COM
Organizational Unit Applications

Sales Department Marketing Department


Organizational Unit Applications

London New York


Organizational Unit Applications

Desktops Printers
Organizational Unit Applications

Desktops Printers

Hardware Devices
Demo
demonstration
Using Organizational Units
z Review Organizational Units
z Create New Organizational Units
Agenda

• Logical Concepts of Active Directory


• Physical Concepts of Active Directory
• DNS in 10 Minutes
• Overview of Active Directory Replication
• The role played by Operations Masters
Domain Controllers

PDC

BDC
BDC

Windows NT 4.0
Domain Controllers
DC
PDC

BDC DC
BDC DC

Windows NT 4.0 Windows Server 2003


Active Directory Sites

Site A

WAN Link

Site B
Active Directory Sites

Site A

WAN Link
Sites Used To:
•Locate Services
Site B
Active Directory Sites

Site A

WAN Link
Sites Used To:
•Locate Services
•Optimize Replication Site B
Active Directory Sites

Site A

WAN Link
Sites Used To:
•Locate Services
•Optimize Replication Site B
•Define Policies
Sites and Domains

Site A

Site B
Sites and Domains

Site A
US.CONTOSO.COM

CONTOSO.COM

Site B
Global Catalog

• Spans all domains


• Contains object attributes
• Used for searches
• Exists on domain controllers
Demo
demonstration
Using Sites and Global Catalogs
z Create a Site
z Review Global Catalog Settings

z Choose Global Catalog Attributes


Agenda

• Logical Concepts of Active Directory


• Physical Concepts of Active Directory
• DNS in 10 Minutes
• Overview of Active Directory Replication
• The role played by Operations Masters
DNS
Domain Naming System locates network services
and resources.

DNS Request Process

•Requested Service
•Site Information

DNS Server DC
DNS
Domain Naming System locates network services
and resources.

DNS Request Process

•Requested Service
•Site Information

DNS Server DC
•IP Addresses
•SVR Records Cache
DNS
Domain Naming System locates network services
and resources.

DNS Request Process

•Requested Service
•Site Information

DNS Server DC
•IP Addresses
•SVR Records Cache
DNS Systems and Requirements
BIND 8.1.2 Windows Windows Windows
NT 2000 Server 2003

Dynamic Update*

AD Integration

Secure Update

SRV Records*

* Required for Active Directory


DNS Migration

• Upgrade to BIND 9.x


• Upgrade to Microsoft DNS
• Delegate to Microsoft DNS
Demo
demonstration
Working with DNS
z Review DNS Zones
z Review Host Records and Dynamic Update
Agenda

• Logical Concepts of Active Directory


• Physical Concepts of Active Directory
• DNS in 10 Minutes
• Overview of Active Directory Replication
• The role played by Operations Masters
Replication Scope

Across Forest:
•Schema NC
Replication Scope

Across Forest:
•Schema NC
•Configuration NC
Replication Scope

Across Domain
•Domain NC

Across Forest:
•Schema NC
•Configuration NC
More Replication Scope

Intrasite
(Token Ring)
More Replication Scope

Intersite
(Compressed)

Intrasite
(Token Ring)
Demo
demonstration
Working with Replication
z Enable Replication
z Review Replication
Agenda

• Logical Concepts of Active Directory


• Physical Concepts of Active Directory
• DNS in 10 Minutes
• Overview of Active Directory Replication
• The role played by Operations Masters
Operations Masters

• Performs operation exclusively

• Within designated scope

• Defaults to first domain controller


Operations Master Roles
Forest Roles
Schema Master

Domain Master
Operations Master Roles
Forest Roles Domain Roles

Schema Master PDC Emulator RID Master

Domain Master Infrastructure


Session Summary
• Manage and control your network
resources more easily with OUs.

• Upgrade to the free Microsoft DNS


package for enhanced integration.

• Active Directory replication protects data


and optimizes network traffic.
For More Information

Visit TechNet at
www.microsoft.com/technet

Visit the following URL for additional information

www.microsoft.com/technet/ADD-01
or

technet.microsoft.com/ADD-01
Microsoft Press Publications

For the latest titles, visit


www.microsoft.com/learning/books/itpro/
Non-Microsoft Publications

These books can be purchased at all major


bookstores and online retailers.
Training Resources
Course ID Title
2199 Jumpstart: Active Directory
Fundamentals
2282 Designing a Microsoft Windows
Server 2003 Active Directory and
Network Infrastructure
For training information and availability
www.microsoft.com/learning
Readiness with Skills Assessment
• Self-study learning tool free to anyone
• Determines skills gaps
• Provides learning plans
• Post your score; see how you stack up

Visit
www.microsoft.com/assessment
Become a Microsoft Certified Professional
• What are MCP certifications?
Validation in performing critical IT functions
• Why certify?
Worldwide recognition of skills gained through
experience
More effective deployments with reduced costs for
your organizations
• What certifications are there for IT pros?
MCP, MCSE, MCSA, MCDST, MCDBA
www.microsoft.com/learning/mcp
Heard the News about TechNet?

• Software without time limits

• Complimentary technical support

• The most current resources on hand

www.microsoft.com/technet/subscriptions
Find all these support options at www.microsoft.com/technet/support
Microsoft offers a progressive series of support options starting with no-charge online support and developing
through subscription, incident, and contract support.

1. No-Charge Online 2. Subscription-Based 3. Assisted Incident 4. Contract-Based


Support Support Support Support
Knowledge Base TechNet Subscription E-mail Support Premier Support
Search a vast database of articles to Subscribe to TechNet for a personal Get online incident help via e-mail from a Get the flexibility to match support
pinpoint the information you need. library of articles, service packs, how-tos, Microsoft Support Professional. options to your organization and
resource kits, tools, utilities, and more. Your enjoy direct access to Microsoft
Newsgroups subscription includes monthly updates Phone Support technical experts at any time, day
Access over 20,000 active newsgroups delivered on CD or DVD, so you always Get incident help over the phone from a or night. Premier Support delivers
on scores of topics. have the latest information, Microsoft Support Professional. customized options for businesses
straight from the source. with complex needs, including
Product Support Centers Phone Support Contract dedicated technical professionals to oversee
Get answers to frequently asked Upgrade to a TechNet Plus subscription and Save with a discounted 5-Pack Phone your support, 24x7 problem resolution, and
questions, plus how-to articles and step- add all this: Support contract. training and workshops that keep your IT
by-step instructions organized staff up to date.
by product. 1. Full-version evaluation software, Advisory Services
including Microsoft Office Add remotely delivered consultation options Essential Support
DLL Help Database System and Windows Server from Microsoft Advisory Services for Essential Support offers prepackaged
Search here to identify the software used System™ products, without proactive support that goes far beyond options specifically designed to meet
to install a specific DLL version. time restrictions. routine product maintenance. the fundamental support requirements
2. Free support — two complimentary of any business, large or small. Includes
Events and Errors Message account management, problem
Center incidents, plus a discount on other
support calls. resolution, and information services.
Resolve event and error messages fast
with explanations, recommendations, and 3. Unlimited, next-business-day
links to support and resources. access to reliable answers from
the IT community and Microsoft
Support Webcasts Support Professionals through
Tune in to live technical presentations by Managed Newsgroups (English only).
Microsoft experts and take part in real-
time Q&A.

Chats
Chat online with Microsoft specialists
or search the transcript archives.

User Group Program


Access information and support for IT
and other interest-specific user groups.

TechNet Security Resource


Center
Get ahead of security risks with
resources that keep you current,
including security newsletters and
the Microsoft notification service.
Where Else Can I Get Help?
• Free chats and webcasts
• List of newsgroups
• Microsoft community sites
• Community events and columns

www.microsoft.com/technet/community

You might also like