What is Active Directory®?
Active Directory® is an integral concept component as well as the name of Microsoft® software technology. It can be seen as a catalog that provides a basic reference list for virtually anything that can be managed in the computer network infrastructure. The directory is structured hierarchically and can include computers, people and even whole networks. The system provides resources for centrally management of computer network and its security, which is scalable, synchronized and standardized throughout the network.
In the heart of Active Directory®, the directory protocol is known as the Lightweight Accectory Accectoce (LDAP) protocol. This protocol determines the means by which the directory structure is organized and read from or registered. It uses the Active Directory® Protocol to Verberos Network Verberos. The service also provides a domain name (DNS) system for translation of the Internet protocol (IP) of addresses into recognizable names.
Everything that goes to Active Directory® is considered an object. There are basically two types of objects, source and security principle. Where sources are usually physical constructions, such as printers, objects of safety principles are a bit more abstract. Each security principle is provided by the SID (SID) in Active Directory®, and then presents everything that can be authenticated by the system and has authorization. Since some objects may obviously be both types, such as a computer in a network that is a source and principle, in some cases they can be nested in themselves.
Looking at three different hierarchical levels, Active Directory® consists of what is known as forests, trees and domains. This can reflect the real organization, geographically and organizationally. For example, the company of the company can consist of two primary domains, one for Chicago and the other for New York. Under eachOther domains for business activities in each city such as accounting departments, sales team, research and development, etc. can be created. These two domain trees will then create a mutual relationship of credibility so that users in both domain can have access resources in the second.
In the Active Directory® core is called an organizational unit (OU). Any number of ous can be nested inside the domain. These allow the Active Directory® structure that corresponds to the structure of the organization and provides a centralized means for distributed object management in the directory. With the established organizational structure, further administration can be delegated to subdomains in the tree, allowing various levprivilegium to various ous in the organization.
All information in Active Directory® is stored in the database known as the directory storage. The system allows this database to be replicated among others in the domain tree and further into the forest. Domains inside the tree regularly check changes indirectory storage in other domains and then if any changes occur.