seattle‐ops‐301d10: Read 13 - thierrytuantran/CF_ops301d10_Notes GitHub Wiki

What exactly is “Active Directory” and are the key services it provides?

• Active Directory is Microsoft's directory and identity management service for Windows networks. Key services are user/device authentication, access control, certificates, federated identity, and information rights management.

What are the differences between a domain, forest, and tree in Active Directory?

• A domain is a collection of objects sharing a database, a tree is domains with a contiguous namespace, and a forest is trees with a common schema and configuration but separate namespaces.

How can objects (e.g. users, devices) within a domain be grouped?

• Objects can be grouped into organizational units (OUs) to simplify administration and policy management.

Explain the benefits of Active Directory, as you would to a family member.

• Active Directory helps improve enterprise security, management, and resilience by centrally controlling user access and simplifying administration across the organization's computers and resources.