A
Anthony Morales
Hello,
Can someone give me a list of AD basics and what they do?
Regards,
Antz
Can someone give me a list of AD basics and what they do?
Regards,
Antz
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
D
David Brandt [MSFT]
I'm not sure what you mean by "AD basics", so if you could elaborate on that
it would be helpful.
thanks
--
David Brandt
Microsoft Corporation
This posting is provided "AS IS" with no warranties, and confers no rights.
Please do not send e-mail directly to this alias. This alias is for
newsgroup purposes only.
it would be helpful.
thanks
--
David Brandt
Microsoft Corporation
This posting is provided "AS IS" with no warranties, and confers no rights.
Please do not send e-mail directly to this alias. This alias is for
newsgroup purposes only.
C
Cary Shultz [A.D. MVP]
Anthony,
This question is wide open and I do not think that you are going to receive
the information that you want / need.
Here is a short list of things that you might want to investigate if you are
trying to learn about WIN2000 Active Directory:
DCs ( FSMO Roles )
Global Catalog
DNS
Sites
GPOs ( Group Policy Object )
OUs ( Organizational Units )
That should get you started.
In short, with WIN2000 we have domain controllers. This differs from WINNT
4.0 in that there were two different types: the Primary Domain Controller
( there could be one and only one in the domain ) and Backup Domain
Controllers ( there could be multiple BDCs in the domain ). All DCs now are
on equal footing. There are five FSMO Roles available to the DCs in a
forest / domain: Schema Master and Domain Naming Master ( these two are
forest-wide ) as well as PDC Emulator, RID Master and Infrastructure Master
( these three are domain-wide ).
There is something called a Global Catalog Server which must be a Domain
Controller. It holds a partial replica.
DNS is very very very important in WIN2000. WINS is not necessarily the
king for name translation any more and may be completely unnecessary in a
WIN2000 Forest. Key word: "MAY" Using it will not necessarily hurt
anything.
Sites are a concept that allow you to have one domain / tree / forest spread
over multiple physical locations. It is a very nice thing. More
importantly, we use Sites to control AD Replication and assist
authentication to the closest DC.
GPOs are really cool. Group Policy allows an Administrator to centrally
make changes on the DC that affects all clients ( either the user account
objects or the computer account objects or both ). Need to make it so that
none of your users can access the Display applet in the Control Panel? GPO
is your friend. Need to install Office XP to 500 users? GPO is your
friend. Need to update that installation of Office XP to Office XP SP2 with
he three or four other security enhancements? GPO is your friend ( or
msiexec.exe ).
OUs are holding bins for objects. I intestinally did not use the word
'container' as a container is a subset of an OU. You use OUs for managing
you user account objects / computer account objects. For example, you would
have to place your user account objects in an OU before you could apply GPOs
to them..
HTH,
Cary
This question is wide open and I do not think that you are going to receive
the information that you want / need.
Here is a short list of things that you might want to investigate if you are
trying to learn about WIN2000 Active Directory:
DCs ( FSMO Roles )
Global Catalog
DNS
Sites
GPOs ( Group Policy Object )
OUs ( Organizational Units )
That should get you started.
In short, with WIN2000 we have domain controllers. This differs from WINNT
4.0 in that there were two different types: the Primary Domain Controller
( there could be one and only one in the domain ) and Backup Domain
Controllers ( there could be multiple BDCs in the domain ). All DCs now are
on equal footing. There are five FSMO Roles available to the DCs in a
forest / domain: Schema Master and Domain Naming Master ( these two are
forest-wide ) as well as PDC Emulator, RID Master and Infrastructure Master
( these three are domain-wide ).
There is something called a Global Catalog Server which must be a Domain
Controller. It holds a partial replica.
DNS is very very very important in WIN2000. WINS is not necessarily the
king for name translation any more and may be completely unnecessary in a
WIN2000 Forest. Key word: "MAY" Using it will not necessarily hurt
anything.
Sites are a concept that allow you to have one domain / tree / forest spread
over multiple physical locations. It is a very nice thing. More
importantly, we use Sites to control AD Replication and assist
authentication to the closest DC.
GPOs are really cool. Group Policy allows an Administrator to centrally
make changes on the DC that affects all clients ( either the user account
objects or the computer account objects or both ). Need to make it so that
none of your users can access the Display applet in the Control Panel? GPO
is your friend. Need to install Office XP to 500 users? GPO is your
friend. Need to update that installation of Office XP to Office XP SP2 with
he three or four other security enhancements? GPO is your friend ( or
msiexec.exe ).
OUs are holding bins for objects. I intestinally did not use the word
'container' as a container is a subset of an OU. You use OUs for managing
you user account objects / computer account objects. For example, you would
have to place your user account objects in an OU before you could apply GPOs
to them..
HTH,
Cary
C
Cary Shultz [A.D. MVP]
Sorry,
Meant that I do not think that you are going to receive the information that
you want / need without specifying exactly what you are trying to
accomplish!
Cary
Meant that I do not think that you are going to receive the information that
you want / need without specifying exactly what you are trying to
accomplish!
Cary