Active Directory (AD) is a directory service in Windows Server that provides a centralized management system for user accounts, computers, groups and policies. It allows administrators to manage network resources from a single point. AD uses a hierarchical structure to organize objects like users, computers, groups and printers to make them easy to access. It also enables features like single sign-on, authentication across domains and trust relationships between different networks.
2. WHAT IS ACTIVE DIRECTORY ?
• ACTIVE DIRECTORY (AD) IS A MICROSOFT TECHNOLOGY USED TO MANAGE
COMPUTERS AND OTHER DEVICES ON A NETWORK. IT IS A PRIMARY FEATURE OF
WINDOWS SERVER, AN OPERATING SYSTEM THAT RUNS BOTH LOCAL AND
INTERNET-BASED SERVERS.
3. BENEFITS OF ACTIVE DIRECTORY
• Hierarchical organizational structure.
• Multimaster authentication & multimaster replication (the ability to access and
modify ad ds from multiple
points of administration)
• A single point of acess to network resources.
• Ability to create trust relationships with external networks running preious
versions of active directory and even unix.
4. DIRECTORY SERVICE
A directory service is a hierarchical arrangement of objects which
are structured in a way that makes access easy. It also helps
organizations have a central administration over all the activities
carried out in their networks. Essentially a network directory service:
• Provides information about the user objects, computers and
services in the network.
• Stores this information in a secure database and provides tools to
manage and search the directory.
• Allows to manage the user accounts and resources, apply policies
consistently as needed by an organization.
5. ACTIVE DIRECTORY DOMAIN SERVICES
• Domain services –
stores centralized data and manages communication between users and
domains; includes login authentication and search functionality
• Certificate services
Lightweight directory services –
supports directory-enabled applications using the open (ldap) protocol.
• Directory federation services –
provides single-sign-on (sso) to authenticate a user in multiple web
applications in a single session.
6. ACTIVE DIRECTORY OBJECT
• Container objects –
these objects can contain other objects inside them, and we can
make collection from them. For ex- forest, tree, domains,
organisational units.
• Leaf objects –
these objects can not contain other objects inside them. For ex-
users, computers, printers, etc.