Active Directory Domain Services (AD DS)
ADDS is designed to provide a central repository for identity management within an organization. AD DS provides authentication and authorization services in a network and supports object management through Group Policy. AD DS also provides information management and sharing services. AD DS is the primary Active Directory technology
Components of an Active Directory Infrastructure
A-Active Directory data store:
The directory is a single file named Ntds.dit and is located by default in the %SystemRoot%\Ntds folder on a domain controller. The database is divided into several partitions, that contains the data about objects within a domain such as users, groups, and computers.
B-Domain controllers:
Domain controllers, also referred to as DCs, are servers that perform the AD DS role. It means the system that host the ADDS service is called Domain Controller.
C-Domain:
A domain is an administrative unit where certain capabilities and characteristics are shared.a domain is a scope of administrative policies such as password complexity and account lockout policies. Such policies configured in one domain and affect all accounts in the domain. Changes can be made to objects in the Active Directory database by any domain controller and will replicate to all other domain controllers.
D-Forest
A forest is a collection of one or more Active Directory domains. The first domain installed in a forest is called the forest root domain. A forest is a single instance of the directory but what does it mean Oh dear it means no data will be replicated by Active Directory outside of the forest.
E- Domain-tree
If a domain is a subdomain of another domain, the two domains are considered a tree. For example, if the dixitmicroit.com forest contains two domains, mcitp.dixitmicroit.com and rhce.dixitmicroit.com, those domains constitute a contiguous portion of the DNS namespace (contiguous means share conman parent domain name), so they are a single tree.
Preparing to Create a New Windows Server 2008 Forest.
1-Configure proper TCP/IP with static ip address.
2-Domain name should be unique like dixitmicroit.com
3-User should be with Admin rights and password enabled, blank password is not acceptable.
Exercise-1: Install a New Windows Server 2008 Forest.
1. Open Server manager
2. click Add Roles.
3. Click Next.
4. On the Select Server Roles page, select Active Directory Domain Services.
5. Click Next.
6. On the Active Directory Domain Services page, click Next
7. On the Confirm Installation Selections page, click Install.
8. On the Installation Results page, confirm and click Close.
Now you have successfully installed ADDS service
No comments:
Post a Comment