-
__________ is a technology created by Microsoft that provides a variety of network services, including the following:
• LDAP
• Kerberos-based and single sign-on authentication
• DNS-based naming and other network information
• A central location for network administration and delegation of authority
Active Directory
-
Windows has default groups called __________. These default groups are granted specific rights and permissions to get you started. Various built-in groups are as follows:
built-in group
-
Windows __________ provide a means for authenticating and auditing a computer’s access to a Windows network and access to domain resources.
computer account
-
A __________ stores, organizes, and provides access to information in a directory. __________ are used for locating, managing, administering, and organizing common items and network resources, such as volumes, folders, files, printers, users, groups, devices, telephone numbers, and other objects.
directory service
-
A __________ is used only for nonsecurity functions, such as distributing email, and it cannot be used to assign rights and permissions.
distribution group
-
A __________ is a Windows server that stores a replica of the account and security information for the domain and defines the domain boundaries.
domain controller
-
__________: contains global groups and universal groups, even though it can also contain user accounts and other domain local groups. It is usually in the domain with the resource to which you want to assign permissions
or rights.
domain local group
-
In today’s networks, you assign logical addresses, such as with IP addressing. Unfortunately, these addresses tend to be hard to remember, especially in the case of newer, more complicated IPv6 addresses. Therefore, you need to use some form of naming service that will allow you to translate logical names, which are easier to remember, into logical addresses. The most common naming service is __________.
Domain Name System (DNS)
-
__________ services to automatically assign IP addresses and related parameters (including subnet mask and default gateway and length of the lease) so that a host can immediately communicate on an IP network when it starts.
Dynamic Host Configuration Protocol (DHCP)
-
because there are certain functions that can be handled by only one domain controller at a time, Active Directory uses __________ roles, also known as operations master roles.
Flexible Single Master Operations (FSMO) roles
-
A __________ is made of one or more trees (although most people think of a forest as two or more trees).
forest
-
A __________ describes the exact position of a host with the
DNS hierarchy. Examples include the following:
• www.microsoft.com
• technet.microsoft.com
• server1.sales.microsoft.com
fully qualified domain name (FQDN)
-
The __________ of a domain or forest depends on which Windows Server operating system versions are running on the domain controllers in that domain or forest.
functional level
-
A __________global catalog replicates the information of every object in a tree and forest. However, instead of storing the entire object, it stores just those attributes that are most frequently used in search operations, such as a user’s first and last name, computer name, and so forth.
global catalog
-
__________: can contain user accounts and other global groups. Global
groups are designed to be “global” for the domain. After you place user accounts into global groups, the global groups are typically placed into domain local groups or local groups.
global group
-
A __________ is a collection or list of user accounts or computer accounts.
group
-
__________ is one of the most powerful features of Active Directory that controls the working environment for user accounts and computer accounts.
group policy
-
The __________ can be edited and is ready to use.
hosts file
-
The__________ is an application protocol for querying and modifying data using directory services running over TCP/IP
Lightweight Directory Access Protocol (LDAP)
-
A server that is not running as a domain controller is known as a __________.
member server
-
An __________ is a distinct, named set of attributes or characteristics that represent a network resource
object
-
To help organize objects within a domain and minimize the number of domains you require, you can use __________, commonly known as OUs.
organizational unit
-
A __________ defines the type of access that is granted to an object (an object can be identified with a security identifier) or object attribute.
permission
-
A __________ authorizes a user to perform certain actions on a computer, such as logging on to a system interactively or backing up files and directories on a system.
right
-
A ___________ is used to assign rights and permissions and gain access to network resources. It can also be used as a distribution group.
security group
-
A __________ is one or more IP subnets that are connected by a high-speed link, typically defined by a geographical location
site
-
A __________ is made of one or more domains (although most people think of a __________ as two or more domains) with contiguous name space.
tree
-
To allow users in one domain to access resources in another domain, Active Directory uses __________.
trust relationship
-
__________: This group scope is designed to contain global groups from multiple
domains.
universal group
-
A __________ enables a user to log on to a computer and domain. As a result, it can used to prove the identity of a user, and this information can then be used to determine what a user can access and what kind of access he or she will have (authorization).
user account
-
Another name resolution technology is __________, which translates from NetBIOS (computer name) to specify a network resource.
Windows Internet Name Service (WINS)
|
|