Active directory
16
Active Directory What Is Active Directory? Active Directory is a Directory Service which contains Information of All User Accounts and Shared Resources on a Network. Active Directory is a Centralized Hierarchical Directory Database What Does Active Directory Do? Centralizes control of Network Resources Centralizes & Decentralizes resource management Stores objects securely in a logical structure Optimizes Network traffic PURPOSE OF ACTIVE DIRECTORY Provides User Logon and Authentication Services using Kerberos to organize and manage: - User Accounts -Computers - Groups - Network Resources FEATURES OF ACTIVE DIRECTORY Fully Integrated Security Easy Administration using Group Policy Flexible Structure of Active Directory 1. Logical Structure 2.Physical Structure
-
Upload
mohammed-faris-majeed -
Category
Education
-
view
423 -
download
3
description
Transcript of Active directory
Active Directory
What Is Active Directory1048711 Active Directory is a Directory Service which contains Information of All User Accounts and Shared Resources on a Network1048711 Active Directory is a Centralized Hierarchical Directory Database
What Does Active Directory Do1048711 Centralizes control of Network Resources1048711 Centralizes amp Decentralizes resource management1048711 Stores objects securely in a logical structure1048711 Optimizes Network trafficPURPOSE OF ACTIVE DIRECTORY1048711 Provides User Logon and Authentication Services using Kerberos1048711 to organize and manage
- User Accounts-Computers- Groups- Network Resources
FEATURES OF ACTIVE DIRECTORY1048711 Fully Integrated Security1048711 Easy Administration using Group Policy1048711 Flexible Structure of Active Directory10487111 Logical Structure1048711 2Physical Structure 1 Logical Structure of Active Directory1048711 Domain1048711 TREE-ParentRoot- ChildBranch1048711 Forest2 Physical Structure of Active Directory
o Domain controllers o Site
Server
Ip address 19216811Sub 2552552550
DNS 19216811
Requirement for install and configure Active directory
- group of systems (pcs) - CD of windows 2003 server - name for the Domain system (mcsecom) - Ram 256mb - Free space at least 2GB in HDD
1- start ndash run type ( DCPROMO )
2- click Next 3- click Next
4- Select ( Domain Controller For New domain ) - click Next
5- select ( Domain in new forest ) - click Next
6- give your domain name eg (mcsecom ) - click Next
7- in domain net Bois (mcse donrsquot change name ) - click Next
8- Database - - click Next
9- folder location - click Next
10- Select install and configure the DNS - click next
11- select permissions compatible only with windows 2000 or 2003 - click Next
12- if you wont password give your password or not - click Next
13- in summary - click Next
14- Now the configure is start pleas wait
15 ndash if the configuration need CD of windows 2003server insert the CD 16-after configuration completed - click finish
17- select restart Now
How can check the active directory install or not 1 (Start ndashprogram - administrative tool)
A- active directory domain and trust B- active directory sites and service C- active directory user and computer D- domain controller security policy E- domain security policy
2-in command prompt there is two commands- Start ndash run ndash type (CMD) ndash ok 1- Type In cnet accounts ltenter gt
It show you in computer Role PRIMARY that mean it is existing
Or else workgroup that mean it is not existing2- start ndash run ndash type ( CMD )
cgettype lt entergtIt show you in computer Role domain controller that mean it is existing
Or else workgroup that mean it does not exist
How to join member server or client to a domain
1Member server (2000 advance server2003 server 2008 server) if a server operator system joint to domain called as Member Server( it is a server which can be host service (DNS DHCPIIS etc ))
2 Clients operator system (vistaxp 7XP pro 2000 pro win 98 win me )If the Clients operator system joint to domain is called client services which cannot be hosting in client
joint member server or Clients operator system to domain 1- in IP give the DNS IP of server domain controller ( To assigning IP
Address)
2- right click in my computer select properties
3- select computer name
4- in computer name select Change 5- in member of select DOMAIN and give your domain name
(mcsecom)
6- give the administrator of the domain and password
7- click ok
9- click yes
Server
Ip address 19216811Sub 2552552550
DNS 19216811
Requirement for install and configure Active directory
- group of systems (pcs) - CD of windows 2003 server - name for the Domain system (mcsecom) - Ram 256mb - Free space at least 2GB in HDD
1- start ndash run type ( DCPROMO )
2- click Next 3- click Next
4- Select ( Domain Controller For New domain ) - click Next
5- select ( Domain in new forest ) - click Next
6- give your domain name eg (mcsecom ) - click Next
7- in domain net Bois (mcse donrsquot change name ) - click Next
8- Database - - click Next
9- folder location - click Next
10- Select install and configure the DNS - click next
11- select permissions compatible only with windows 2000 or 2003 - click Next
12- if you wont password give your password or not - click Next
13- in summary - click Next
14- Now the configure is start pleas wait
15 ndash if the configuration need CD of windows 2003server insert the CD 16-after configuration completed - click finish
17- select restart Now
How can check the active directory install or not 1 (Start ndashprogram - administrative tool)
A- active directory domain and trust B- active directory sites and service C- active directory user and computer D- domain controller security policy E- domain security policy
2-in command prompt there is two commands- Start ndash run ndash type (CMD) ndash ok 1- Type In cnet accounts ltenter gt
It show you in computer Role PRIMARY that mean it is existing
Or else workgroup that mean it is not existing2- start ndash run ndash type ( CMD )
cgettype lt entergtIt show you in computer Role domain controller that mean it is existing
Or else workgroup that mean it does not exist
How to join member server or client to a domain
1Member server (2000 advance server2003 server 2008 server) if a server operator system joint to domain called as Member Server( it is a server which can be host service (DNS DHCPIIS etc ))
2 Clients operator system (vistaxp 7XP pro 2000 pro win 98 win me )If the Clients operator system joint to domain is called client services which cannot be hosting in client
joint member server or Clients operator system to domain 1- in IP give the DNS IP of server domain controller ( To assigning IP
Address)
2- right click in my computer select properties
3- select computer name
4- in computer name select Change 5- in member of select DOMAIN and give your domain name
(mcsecom)
6- give the administrator of the domain and password
7- click ok
9- click yes
2- click Next 3- click Next
4- Select ( Domain Controller For New domain ) - click Next
5- select ( Domain in new forest ) - click Next
6- give your domain name eg (mcsecom ) - click Next
7- in domain net Bois (mcse donrsquot change name ) - click Next
8- Database - - click Next
9- folder location - click Next
10- Select install and configure the DNS - click next
11- select permissions compatible only with windows 2000 or 2003 - click Next
12- if you wont password give your password or not - click Next
13- in summary - click Next
14- Now the configure is start pleas wait
15 ndash if the configuration need CD of windows 2003server insert the CD 16-after configuration completed - click finish
17- select restart Now
How can check the active directory install or not 1 (Start ndashprogram - administrative tool)
A- active directory domain and trust B- active directory sites and service C- active directory user and computer D- domain controller security policy E- domain security policy
2-in command prompt there is two commands- Start ndash run ndash type (CMD) ndash ok 1- Type In cnet accounts ltenter gt
It show you in computer Role PRIMARY that mean it is existing
Or else workgroup that mean it is not existing2- start ndash run ndash type ( CMD )
cgettype lt entergtIt show you in computer Role domain controller that mean it is existing
Or else workgroup that mean it does not exist
How to join member server or client to a domain
1Member server (2000 advance server2003 server 2008 server) if a server operator system joint to domain called as Member Server( it is a server which can be host service (DNS DHCPIIS etc ))
2 Clients operator system (vistaxp 7XP pro 2000 pro win 98 win me )If the Clients operator system joint to domain is called client services which cannot be hosting in client
joint member server or Clients operator system to domain 1- in IP give the DNS IP of server domain controller ( To assigning IP
Address)
2- right click in my computer select properties
3- select computer name
4- in computer name select Change 5- in member of select DOMAIN and give your domain name
(mcsecom)
6- give the administrator of the domain and password
7- click ok
9- click yes
6- give your domain name eg (mcsecom ) - click Next
7- in domain net Bois (mcse donrsquot change name ) - click Next
8- Database - - click Next
9- folder location - click Next
10- Select install and configure the DNS - click next
11- select permissions compatible only with windows 2000 or 2003 - click Next
12- if you wont password give your password or not - click Next
13- in summary - click Next
14- Now the configure is start pleas wait
15 ndash if the configuration need CD of windows 2003server insert the CD 16-after configuration completed - click finish
17- select restart Now
How can check the active directory install or not 1 (Start ndashprogram - administrative tool)
A- active directory domain and trust B- active directory sites and service C- active directory user and computer D- domain controller security policy E- domain security policy
2-in command prompt there is two commands- Start ndash run ndash type (CMD) ndash ok 1- Type In cnet accounts ltenter gt
It show you in computer Role PRIMARY that mean it is existing
Or else workgroup that mean it is not existing2- start ndash run ndash type ( CMD )
cgettype lt entergtIt show you in computer Role domain controller that mean it is existing
Or else workgroup that mean it does not exist
How to join member server or client to a domain
1Member server (2000 advance server2003 server 2008 server) if a server operator system joint to domain called as Member Server( it is a server which can be host service (DNS DHCPIIS etc ))
2 Clients operator system (vistaxp 7XP pro 2000 pro win 98 win me )If the Clients operator system joint to domain is called client services which cannot be hosting in client
joint member server or Clients operator system to domain 1- in IP give the DNS IP of server domain controller ( To assigning IP
Address)
2- right click in my computer select properties
3- select computer name
4- in computer name select Change 5- in member of select DOMAIN and give your domain name
(mcsecom)
6- give the administrator of the domain and password
7- click ok
9- click yes
8- Database - - click Next
9- folder location - click Next
10- Select install and configure the DNS - click next
11- select permissions compatible only with windows 2000 or 2003 - click Next
12- if you wont password give your password or not - click Next
13- in summary - click Next
14- Now the configure is start pleas wait
15 ndash if the configuration need CD of windows 2003server insert the CD 16-after configuration completed - click finish
17- select restart Now
How can check the active directory install or not 1 (Start ndashprogram - administrative tool)
A- active directory domain and trust B- active directory sites and service C- active directory user and computer D- domain controller security policy E- domain security policy
2-in command prompt there is two commands- Start ndash run ndash type (CMD) ndash ok 1- Type In cnet accounts ltenter gt
It show you in computer Role PRIMARY that mean it is existing
Or else workgroup that mean it is not existing2- start ndash run ndash type ( CMD )
cgettype lt entergtIt show you in computer Role domain controller that mean it is existing
Or else workgroup that mean it does not exist
How to join member server or client to a domain
1Member server (2000 advance server2003 server 2008 server) if a server operator system joint to domain called as Member Server( it is a server which can be host service (DNS DHCPIIS etc ))
2 Clients operator system (vistaxp 7XP pro 2000 pro win 98 win me )If the Clients operator system joint to domain is called client services which cannot be hosting in client
joint member server or Clients operator system to domain 1- in IP give the DNS IP of server domain controller ( To assigning IP
Address)
2- right click in my computer select properties
3- select computer name
4- in computer name select Change 5- in member of select DOMAIN and give your domain name
(mcsecom)
6- give the administrator of the domain and password
7- click ok
9- click yes
10- Select install and configure the DNS - click next
11- select permissions compatible only with windows 2000 or 2003 - click Next
12- if you wont password give your password or not - click Next
13- in summary - click Next
14- Now the configure is start pleas wait
15 ndash if the configuration need CD of windows 2003server insert the CD 16-after configuration completed - click finish
17- select restart Now
How can check the active directory install or not 1 (Start ndashprogram - administrative tool)
A- active directory domain and trust B- active directory sites and service C- active directory user and computer D- domain controller security policy E- domain security policy
2-in command prompt there is two commands- Start ndash run ndash type (CMD) ndash ok 1- Type In cnet accounts ltenter gt
It show you in computer Role PRIMARY that mean it is existing
Or else workgroup that mean it is not existing2- start ndash run ndash type ( CMD )
cgettype lt entergtIt show you in computer Role domain controller that mean it is existing
Or else workgroup that mean it does not exist
How to join member server or client to a domain
1Member server (2000 advance server2003 server 2008 server) if a server operator system joint to domain called as Member Server( it is a server which can be host service (DNS DHCPIIS etc ))
2 Clients operator system (vistaxp 7XP pro 2000 pro win 98 win me )If the Clients operator system joint to domain is called client services which cannot be hosting in client
joint member server or Clients operator system to domain 1- in IP give the DNS IP of server domain controller ( To assigning IP
Address)
2- right click in my computer select properties
3- select computer name
4- in computer name select Change 5- in member of select DOMAIN and give your domain name
(mcsecom)
6- give the administrator of the domain and password
7- click ok
9- click yes
12- if you wont password give your password or not - click Next
13- in summary - click Next
14- Now the configure is start pleas wait
15 ndash if the configuration need CD of windows 2003server insert the CD 16-after configuration completed - click finish
17- select restart Now
How can check the active directory install or not 1 (Start ndashprogram - administrative tool)
A- active directory domain and trust B- active directory sites and service C- active directory user and computer D- domain controller security policy E- domain security policy
2-in command prompt there is two commands- Start ndash run ndash type (CMD) ndash ok 1- Type In cnet accounts ltenter gt
It show you in computer Role PRIMARY that mean it is existing
Or else workgroup that mean it is not existing2- start ndash run ndash type ( CMD )
cgettype lt entergtIt show you in computer Role domain controller that mean it is existing
Or else workgroup that mean it does not exist
How to join member server or client to a domain
1Member server (2000 advance server2003 server 2008 server) if a server operator system joint to domain called as Member Server( it is a server which can be host service (DNS DHCPIIS etc ))
2 Clients operator system (vistaxp 7XP pro 2000 pro win 98 win me )If the Clients operator system joint to domain is called client services which cannot be hosting in client
joint member server or Clients operator system to domain 1- in IP give the DNS IP of server domain controller ( To assigning IP
Address)
2- right click in my computer select properties
3- select computer name
4- in computer name select Change 5- in member of select DOMAIN and give your domain name
(mcsecom)
6- give the administrator of the domain and password
7- click ok
9- click yes
14- Now the configure is start pleas wait
15 ndash if the configuration need CD of windows 2003server insert the CD 16-after configuration completed - click finish
17- select restart Now
How can check the active directory install or not 1 (Start ndashprogram - administrative tool)
A- active directory domain and trust B- active directory sites and service C- active directory user and computer D- domain controller security policy E- domain security policy
2-in command prompt there is two commands- Start ndash run ndash type (CMD) ndash ok 1- Type In cnet accounts ltenter gt
It show you in computer Role PRIMARY that mean it is existing
Or else workgroup that mean it is not existing2- start ndash run ndash type ( CMD )
cgettype lt entergtIt show you in computer Role domain controller that mean it is existing
Or else workgroup that mean it does not exist
How to join member server or client to a domain
1Member server (2000 advance server2003 server 2008 server) if a server operator system joint to domain called as Member Server( it is a server which can be host service (DNS DHCPIIS etc ))
2 Clients operator system (vistaxp 7XP pro 2000 pro win 98 win me )If the Clients operator system joint to domain is called client services which cannot be hosting in client
joint member server or Clients operator system to domain 1- in IP give the DNS IP of server domain controller ( To assigning IP
Address)
2- right click in my computer select properties
3- select computer name
4- in computer name select Change 5- in member of select DOMAIN and give your domain name
(mcsecom)
6- give the administrator of the domain and password
7- click ok
9- click yes
17- select restart Now
How can check the active directory install or not 1 (Start ndashprogram - administrative tool)
A- active directory domain and trust B- active directory sites and service C- active directory user and computer D- domain controller security policy E- domain security policy
2-in command prompt there is two commands- Start ndash run ndash type (CMD) ndash ok 1- Type In cnet accounts ltenter gt
It show you in computer Role PRIMARY that mean it is existing
Or else workgroup that mean it is not existing2- start ndash run ndash type ( CMD )
cgettype lt entergtIt show you in computer Role domain controller that mean it is existing
Or else workgroup that mean it does not exist
How to join member server or client to a domain
1Member server (2000 advance server2003 server 2008 server) if a server operator system joint to domain called as Member Server( it is a server which can be host service (DNS DHCPIIS etc ))
2 Clients operator system (vistaxp 7XP pro 2000 pro win 98 win me )If the Clients operator system joint to domain is called client services which cannot be hosting in client
joint member server or Clients operator system to domain 1- in IP give the DNS IP of server domain controller ( To assigning IP
Address)
2- right click in my computer select properties
3- select computer name
4- in computer name select Change 5- in member of select DOMAIN and give your domain name
(mcsecom)
6- give the administrator of the domain and password
7- click ok
9- click yes
2-in command prompt there is two commands- Start ndash run ndash type (CMD) ndash ok 1- Type In cnet accounts ltenter gt
It show you in computer Role PRIMARY that mean it is existing
Or else workgroup that mean it is not existing2- start ndash run ndash type ( CMD )
cgettype lt entergtIt show you in computer Role domain controller that mean it is existing
Or else workgroup that mean it does not exist
How to join member server or client to a domain
1Member server (2000 advance server2003 server 2008 server) if a server operator system joint to domain called as Member Server( it is a server which can be host service (DNS DHCPIIS etc ))
2 Clients operator system (vistaxp 7XP pro 2000 pro win 98 win me )If the Clients operator system joint to domain is called client services which cannot be hosting in client
joint member server or Clients operator system to domain 1- in IP give the DNS IP of server domain controller ( To assigning IP
Address)
2- right click in my computer select properties
3- select computer name
4- in computer name select Change 5- in member of select DOMAIN and give your domain name
(mcsecom)
6- give the administrator of the domain and password
7- click ok
9- click yes
How to join member server or client to a domain
1Member server (2000 advance server2003 server 2008 server) if a server operator system joint to domain called as Member Server( it is a server which can be host service (DNS DHCPIIS etc ))
2 Clients operator system (vistaxp 7XP pro 2000 pro win 98 win me )If the Clients operator system joint to domain is called client services which cannot be hosting in client
joint member server or Clients operator system to domain 1- in IP give the DNS IP of server domain controller ( To assigning IP
Address)
2- right click in my computer select properties
3- select computer name
4- in computer name select Change 5- in member of select DOMAIN and give your domain name
(mcsecom)
6- give the administrator of the domain and password
7- click ok
9- click yes
2- right click in my computer select properties
3- select computer name
4- in computer name select Change 5- in member of select DOMAIN and give your domain name
(mcsecom)
6- give the administrator of the domain and password
7- click ok
9- click yes
6- give the administrator of the domain and password
7- click ok
9- click yes
9- click yes
