Active Directory - Salem73616C656D/reading-notes GitHub Wiki

Key Takeaways

Active Directory is Microsoft's directory and identity management service. It allows broad and granular control over objects in a domain to include access, authentication, security, and configuration.

It allows control over objects in a hierarchy of Domains, Trees, and *Forests.

Domain: collection of objects that share the same AD database. (defined by DNS name ***.com)

Tree: A collection of one or more domains with a contiguous namespace (common root name x.company.com)

Forest: A collection of one or more trees that share a common schema, global catalog, and directory config. (not necessarily the same namespace. Typically used as a security boundary for an enterprise network)

Active Directory provides security, extensibility, simplicity, and resiliency.

Vocabulary

No new vocabulary

Conclusion

Active Directory is a great tool that makes enterprise system management very easy from a centralized command node.