What is Active Directory?
Active Directory allows network administrators to create and manage domains, users and objects within a network. For example, an administrator can create a group of users and grant them specific access privileges to certain directories on the server.
Active Directory concept (or structure)
Active Directory allows network administrators to create and manage domains, users and objects within a network. For example, an administrator can create a group of users and grant them specific access privileges to certain directories on the server.
Active Directory concept (or structure)
- Directory: Contains all the information about the objects in the active directory.
- Object: Refers to almost anything in the directory (user, group, folder...),
- Domain: Objects are contained within the domain. Within a "forest more than one domain can exist and each domain will have its own collection of objects.
- Tree: Example: dom.local, email.dom.local,
- Forest: the forest is the highest level of the organizational hierarchy and is composed of a group of trees The forest is the highest level of the organizational hierarchy and is composed of a group of trees connected by trust relationships
- Domain Services: Manages communication between users and domains includes login authentication and lookup functionality
- Certificate Services: Creates, distributes and manages secure certificates.
- Lightweight directory services: Supports directory-enabled applications using the open protocol (LDAP).
- Directory federation services: Provides Single Sign-On (SSO) to authenticate a user to multiple web applications in a single session.
- Rights management: Protects copyrighted information from unauthorized use and distribution. by preventing unauthorized use and distribution of digital content.
- DNS service: Used to resolve domain names.