1. Home
  2. Flashcards
  3. Preview

Active Directory

  1. What is Active Directory?
    • AD is a data base that is
    • Network accesable
    • Network created and
    • Network maintained
  2. SID
    Security Identifier
  3. RID
    Relative Identifier
  4. GUID
    Globally unique identifier, (both SID and RID)
  5. MMC Applets
    • AD users and computers
    • AD sites and services
    • AD domain and trusts
    • AD group policy
  6. AD Command Line Tools
    • netdom - Enables administrators to manage Active Directory domains and trust relationships from the command prompt.
    • ntdsutil - perform database maintenance of AD DS, manage and control single master operations, and remove metadata left behind by domain controllers that were removed from the network without being properly uninstalled
  7. What is AD 100% dependent on?
    DNS
  8. Organizational units
    Units for organizing SPO's
  9. What does AD start by creating.
    A local domain name
  10. What 2 types of local domain names do you not want to use for AD
    any TLD's (.com .net .org)

    .local
  11. AD forest
    A group of domain that you have living in a security realm
  12. AD Tree
    A group of domains that have a continues name space
  13. Command line tool that runs the AD installer
    dcpromo
  14. 2 functional level types of AD
    Forest Functional Level - The minimum OS level to become a DC in a given forest

    Domain Functional Level - The minimum OS level required for the server to become a DC in a given domain
  15. RODC
    A domain controller that cannot make any changes to the domain
  16. 5 FSMO roles
    • PDC Emulator
    • Infrastructure Master
    • RID Master
    • Domain Naming Master
    • Schema Master
  17. Roles of a PDC Emulator
    • (Domain Level Role)
    • Most used and important role
    • Authortave time source for the domain
    • Processes password changes
    • Final Authority on passwords
    • PDC replicates out of the forest
  18. Infrastructure Master
    • (Domain Level Role)
    • Contains a complete list of all domain objects and all of their properties
    • Responsible for cross domain refrences
    • Should not be placed in a Global Catalog Server unless all DCs are GCS's
  19. RID Master
    • (Domain Level Role)
    • Creates and owns the master RID pool
    • When the DC runs out of assigned RIDS they query the RID master for additional RIDS
  20. Domain Naming Master
    • (Forest Level Role)
    • Responsible for maintaining the domain names in an AD forest
    • Prevents the addition / creation of new domains with identical names to existing domains
  21. Schema Master
    • (Forest Level Role)
    • Maintains the AD forest schema, determining what objects and data can be created and / or specified in a forest
  22. command line tool for checking what fsmo roles locations
    netdom query fsmo
  23. AD sites
    A mapping of physical locations to subnets
  24. Bridge Head Servers
    In charge of replication between AD servers
  25. Cost
    A varied to for how often replication occurs
  26. AD Replication tool
    • replmon
    • repadmin
  27. Global Catalog Server
    Contains most commonly used items for AD, Incomplete list, used for quick reference
  28. AD Trusts
    Resources from one domain, having access to another domain
  29. Two attributes of directional AD trusts
    • Direction
    • Mid direction (bob.com -----> tom.com) one way
    • Bi direction ( bob.com <------> tom.com) both ways
  30. Two attributes of Transitive trusts
    • Non transitive
    • Bob.com <--->tom.com<--->ted.com
    • Can only talk to boxes that they are pointing to

    • transitive
    • bob.com<--t-->tom.com<--->ted.com
    • Bob can only talk tom, but ted can talk to all
Author
tntflashcards
ID
288169
Card Set
Active Directory
Description
tnt active directory
Updated

  1. Home
  2. Flashcards
  3. Preview