Introduction and Installation Guide for Windows 2000 Active Directory

Source: Internet
Author: User
Keywords Active Directory can level provide we
Directory, is a database, the storage of network resources related information, including the location of resources, management and other information.

Directory service is a network service, the directory service tag manages all entity resources on the network (such as computers, users, printers, files, applications, and so on), and provides a consistent way to name, describe, find, access, and protect these entity information so that all users and applications on the network can access those resources.

Active Directory (Active Directory)

The Active Directory is a fully implemented directory service for Windows 2000 and a basic structural model of the Windows 2000http://www.aliyun.com/zixun/aggregation/32413.html > Network System. Is the core pillar of the Windows 2000 network operating system and the central authority.

Microsoft's Active Directory, available in Windows 2000, is a comprehensive directory services management scenario and an enterprise-class directory service with good scalability. The Active Directory incorporates the standard protocols of the Internet, which are tightly integrated with the operating system. The Active Directory can manage not only basic network resources, such as computer objects, user accounts, printers and so on, it also fully considered the business needs of modern applications, for these applications provide a basic management object model, such as the user account with Office phone, mobile phone, pager, address, boss, subordinates, e-mail and other attributes. Almost all applications can directly utilize the directory service structure provided by the system, and the Active Directory also has a good scalability to allow applications to customize the properties of objects in the directory or to add new object types.

The logical structure of the Active Directory

The logical structure of the Active Directory is very flexible, it provides a complete tree hierarchy view of the Active Directory, and the logical structure is directly related to the namespaces we discussed earlier. The logical structure provides great convenience for users and administrators to find and locate objects. Logical units in the Active Directory include domains, organizational units (organizational unit, abbreviation OU), domain tree, domain forest.

1 domains (domain)

The domain is both a logical organizational unit of the Windows network system and a logical organizational unit of the Internet, in which the domain is a security boundary. A domain administrator can only manage the interior of a domain, unless other domains explicitly grant him administrative rights to access or manage other domains. Each domain has its own security policy and its security trust relationship with other domains.

2. OU (organizational unit)

An OU is a container object, and we can organize objects in a domain into logical groups, so OUs are purely a logical concept that can help us simplify management. OUs can include a variety of objects, such as user accounts, user groups, computers, printers, and even other OUs. So we can use OUs to create a completely logical hierarchy of objects in the domain, and for an enterprise, we can group all users and devices into an OU hierarchy by department, or by geography, and by functionality and permissions into multiple OU hierarchies. Because the OU hierarchy is limited to the interior of the domain, the OU hierarchy in one domain is completely independent of the OU hierarchy in another domain.

3, Tree

When multiple domains are connected through a trust relationship, all domains share a common table structure (schema), configuration, and global Catalog (catalog) to form a domain tree. A domain tree consists of multiple domains that share the same table structure and configuration to form a contiguous namespace. The domains in the tree are connected by trust relationships. The Active Directory contains one or more domain trees.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.