Active Directory provides a centralized database of users and computers in a domain, allowing for single sign-on. It stores user and system objects, along with credentials, policies and other access controls. Domain controllers authenticate users and determine permissions by replicating the Active Directory database. The schema defines how data is organized in Active Directory and can be extended.