Active Directory Services function definition feature ads domain tree forest
Domain Controllers
Domains
The feature of Domains:-
Trees
Feature of Tree
Forests
Feature of Forests
Pre-quest of ADS configuration active directory service
Pre-quest of Active directory services
Active directory is a central component of the Windows platform, Active Directory service provides the means to manage the identities and relationships that makeup network environments. After installing the Active Directory You can create centralized User & group for the Whole Network. We can say Active Directory does the function in the form of the main switchboard for Network Operating System. Active Directory itself is more than just a database. It is a collection of supporting files that includes transaction logs and the system volume, or Sysvol, that contains logon scripts and Group Policy information.
Active Directory simplifies the security and administration of resources throughout a network (including the computers that are part of the network) by providing a single point of administration for all objects on the network. Active Directory organizes resources hierarchically in domains, which are logical groupings of servers and other network resources.
One big advantage that Active Directory provides is a single login point for all network resources, so a user can log on to the network with a single username and password, and then access any resources to which the user account is granted access. An administrator can log on to one computer and administer objects on any computer in the network.
Domain Controllers
A domain controller is a server that has been promoted by running the Active Directory Installation Wizard by running DCPROMO from the command line or using add remove a role from managing your server. Once a server has become a domain controller, it hosts a copy, or replica, of Active Directory and changes to the database on any domain controller, are replicated to all domain controllers within the domain.
Domains
The core unit of logical structure in Active Directory is the domain. However, an enterprise might have more than one domain in its Active Directory.
The feature of Domains:-
· Domains allows administrators to divide the network into manageable boundaries.
· Administrators from different domains can establish their own security models (including password complexity and password-length requirements); security from one domain can then be isolated so that other domains security models are not affected.
· Domains provide a way to logically partition a network along the same administrative lines as an organization. Organizations that are large enough to have more than one domain usually have divisions that are responsible for maintaining and securing their own resources. Grouping objects into one or more domains enable your network to reflect your company's organization.
· Domains are independent administrative units, with their own security and administrative policies.
· All network objects exist within a domain, and each domain stores information only about the objects that it contains.
· Theoretically, a domain directory can contain up to 10 million objects, but 1 million objects per domain is a more practical amount.
Trees
A tree is a hierarchical arrangement of one or more domains that share a common schema and a contiguous namespace. In the example shown in Figure, all the domains in the tree under the Example.com root domain share the namespace Example.com.
The first domain you create in a tree is called the root domain. The next domain that you add becomes a child domain of that root. In this figure, Lucknow.example.com and Jaiure.example.com are the child domains.
Feature of Tree
· Following DNS standards, the domain name of a child domain is the relative name of that child domain appended with the name of the parent domain.
· All domains within a single tree share a common schema, which is a formal definition of all object types that you can store in an Active Directory deployment.
· All domains within a single tree share a common Global Catalog, which is the central repository of information about objects in a tree.
Forests
A forest is a grouping or hierarchical arrangement of one or more domain trees that form a disjointed namespace but might share a common schema and Global Catalog If domains in an Active Directory do not share a common root domain, they create multiple trees. That leads you to the largest structure in an Active Directory: the forest. An Active Directory forest includes all domains within that Active Directory. A forest might contain multiple domains in multiple trees or just one domain. When more than one domain exists, a component of Active Directory called the Global Catalog becomes important because it provides information about objects that are located in other domains in the forest.
In the figure given above the namespace example.com is represented in one tree, and the namespace MothersNetwork.com is represented in another. There is always at least one forest on a network, and it is created when the first Active Directory enabled computer (domain controller) on a network is installed. This first domain in a forest, called the forest root domain, is special because it holds the schema and controls domain naming for the entire forest. It cannot be removed from the forest without removing the entire forest itself. Also, no other domain can ever be created above the forest root domain in the forest domain hierarchy.
Feature of Forests
· All trees in a forest share a common schema.
· Trees in a forest have different naming structures, according to their domains.
· All domains in a forest share a common Global Catalog.
· Domains in a forest operate independently, but the forest enables communication across the entire organization.
Pre-quest of ADS configuration active directory service
In our last article, you learned about the basic concept of ADS. In this article, we will configure the ADS service on server 2003.
Pre-quest of Active directory services
· NTFS partition
· Manual IP configuration
· Connectivity of LAN
· CD of Server 2003 (ADS Configuration wizard require window files)
· Root partition (partition where you have installed server 2003) must be on NTFS
· ADS configuration wizard store its installation files in NTDS folder and this folder must be located on NTFS file system. The default file system of Server 2003 is NTFS unless you have changed it during the installation. If you have changed the file system then you have to convert it to NFTS before you start configuration of ADS.
· To change file system from FAT to NTFS open command prompt and run following commands
· c:\>convert c: /fs:ntfs
· Replace c: with your installation drive latter
· Reboot the system to take effect. After reboot verify that partition is successfully converted in NTFS
To verify open my computer and select properties from right click
From properties screen, you could verify that file system is converted in NTFS
- ·Manual IP configuration
- Server IP address cannot be set to dynamic. You need to set static IP address before starting the configuration of ADS. To set the static IP address opens the properties of local area connection. Now select the TCP/IP and click on properties and set the IP address
· Connectivity of LAN
· Sever will check the connectivity of LAN card during the installation of ADS. An unplugged LAN card or disable LAN card will fail the configuration of ADS. So check it before ADS configurations. You can check its status from the properties of my network places
· Alternatively you can examine it just by looking at the taskbar. The image below shows the working LAN card
· Once you have completed these entire necessary steps you are ready to configure ADS. In our next article, we will configure ADS.
No comments: