Term
| Benefits of active directory domain |
|
Definition
| provide the main repository for information about network users, computers, services and other resources on a Microsoft network. |
|
|
Term
|
Definition
| Active directory, domains are configured on a per domain basis. allow enterprises to migrate their active directory domain controllers gradually, based on the need and desire for the new functionality. |
|
|
Term
|
Definition
| contains the rules and definitions that are used for creating and modifying object classes and attributes within active directory. |
|
|
Term
|
Definition
| shared by every domain and domain tree within the forest. a master database that contains definitions of all objects in the active directory. has 2 components. Objects and attributes. |
|
|
Term
|
Definition
| used to optimize the replication of active directory information across small or large geographic areas |
|
|
Term
|
Definition
| records within DNS that allows clients to locate an active directory domain controller or global catalog. |
|
|
Term
|
Definition
| raises the functional level of a forest. |
|
|
Term
|
Definition
| Users from domain A can access resources in domain B and users in domain B can simultaneously access resources in domain A. If A trusts B and B trusts C then A trusts C. |
|
|
Term
|
Definition
| Process of replicating DNS information from one DNS server to another. |
|
|
Term
|
Definition
| computer host name to IP address mapping used for name resolution by a variety of services.when a user requests access to a server based on its host name, the request is passed to a DNS server to resolve the host name to an IP address. Most queries are based on forward lookups. |
|
|
Term
|
Definition
| file needed to run the active directory schema MMC snap-in. |
|
|
Term
|
Definition
| configures trust relationships between windows 2008 active directory and a Unix MIT keberos realm which is the UNIX equivalent to an active directory domain allowing centralized user and password administration on a UNIX network. |
|
|
Term
Active Directory Domains
Trusts MMC Snap-in |
|
Definition
| establish manual trust related. You can decide if the trust will be one way incoming, one way outgoing or two way. |
|
|
Term
|
Definition
| When replicating between sites, active directory will designate a Server in each site to act as a gatekeeper in managing site to site replication. This allows intersite replication to update only one domain controller within a site. |
|
|
Term
|
Definition
| Amount of time it takes for this process to take place so all domain controllers in the environment contain the most up-to-date information. |
|
|
Term
| Intersite Topology Generator |
|
Definition
| create a replication in a multi site network, is responsible for selecting a Bridgehead Server and mapping the topology to be used for replication between sites. |
|
|
Term
|
Definition
| An alternative solution for intersite replication when a direct or reliable IP connection is not available, a member of the transmission control protocol/Internet protocol (tcp/ip) suite |
|
|
Term
|
Definition
| Replication between sites is compressed to optimize WAN bandwidth utilization. To further minimize the bandwidth implications , Active directory will designate a Bridgehead Server within each site. traffic is compressed by default, so that bridgehead servers will be responsible for decompressing, compressing, sending and receiving all replication traffic within the site and between sites. |
|
|
Term
|
Definition
| When more than one preferred bridgehead Server is configured and the preferred bridgehead Server fails, it will choose another server from the list. Each domain controller uses an internal process called the to map the logical network topology between the domain controllers. |
|
|
Term
|
Definition
| The first domain controller installed in the forest root domain. Has four main functions. Facilitating searches for objects in the forest. Resolving user principal names UPNS. Maintaining universal group membership information. Maintaining a copy of all objects in the domain. |
|
|
Term
|
Definition
| when configuring replication you can choose between 2 possible protocols. for all replication traffic. RPC is commonly used to communicate with network services on various computers, whereas IP is responsible for the addressing and routing of the data. RPC over IP replication keeps data secure while in transit by using both authentication and encryption. |
|
|
Term
| Universal Group Membership Caching |
|
Definition
| For sites that do not have a global server available, windows server 2003 and 2008 offer a feature . this stores on a local domain controller that can be used for logon to the domain eliminating the need for frequent access to a global catalog server. |
|
|
Term
|
Definition
| Used when you move a FSMO role gracefully from one domain controller to another. You can transfer FSMO roles from one domain to another to improve active directory performance or as a temporary measure when a domain controller will be taken offline for maintenance. When managing FSMO role outages, planned or unplanned, 2 techniques can be used to manage existing roles or recover from a failed role. Flexible single master operations. |
|
|
Term
|
Definition
| Users, groups and computers from any domain in the forest. In addition, universal groups through their member of a universal group can be granted or denied permission to access resources throughout the forest. This presents another reason why a global catalog is required for a successful first time logon to active directory. |
|
|
