Shared Flashcard Set

Details

Active Directory chapter 1
active directory
43
Computer Networking
Undergraduate 1
05/30/2012

Additional Computer Networking Flashcards

 


 

Cards

Term
Active Directory Domain Services (AD DS)
Definition

Windows Server 2008 service that provides a centralized authentication service for Microsoft networks. Provides the full-fledged directory service that is called Active Directory in Windows Server 2008 and previous versions of Windows Server.

Term
Application partition
Definition

Partition that allows information to be replicated to administratively chosen domain controllers. An example of information that is commonly stored in an application partition is DNS data. Application partitions offer control over the scope and placement of information that is to be replicated.

Term
Attribute
Definition

Characteristics associated with an object class in Active Directory that make the object class unique within the database. The list of attributes is defined only once in the schema, but the same attribute can be associated with more than one object class.

Term
Configuration NC     
Definition
Configuration partition that contains information regarding the physical topology of the network, as well as other configuration data that must be replicated throughout the forest
Term
Container object     
Definition

Object, such as a domain or organizational unit, that is used to organize other objects. Also known as a leaf object.

Term
Cross-forest trust     
Definition

Trust type that allows resources to be shared between Active Directory forests.

Term
Delegation
Definition

Administration of an organizational unit is tasked to a departmental supervisor or manager, thus allowing that person to manage day-to-day resource access as well as more mundane tasks, such as resetting passwords.

Term
Directory service     
Definition

Allows businesses to define, manage, access, and secure network resources including files, printers, people, and applications.

Term
Distinguished name (DN)     
Definition

Full name of an object that includes all hierarchical containers leading up to the root domain. The distinguished name begins with the object’s common name and appends each succeeding parent container object, reflecting the object’s location in the Active Directory structure.

 

Term
Domain
Definition

Grouping of objects in Active Directory that can be managed together. A domain can function as a security boundary for access to resources such as computers, printers, servers, applications, and file systems.

Term
Domain controller (DC)     
Definition

Server that stores the Active Directory database and authenticates users with the network during logon.

 

Term
Domain Name System (DNS)     
Definition

Name resolution mechanism that computers use for all Internet communications and for private networks that use the Active Directory domain services included with Microsoft Windows Server 2008, Windows Server 2003, and Windows 2000 Server.

Term
Domain NC     
Definition

Active Directory domain partition that is replicated to each domain controller within a particular domain. Each domain’s Domain NC contains information about the objects that are stored within that domain: users, groups, computers, printers, organizational units, and more.

 

Term
Domain tree     
Definition
In Active Directory, a logical grouping of network resources and devices that can contain one or more domains configured in a parent–child relationship. Each Active Directory forest can contain one or more domain trees, each of which can, in turn, contain one or more domains.
Term
External trust     
Definition
One-way, nontransitive trust that is established with a Windows NT domain or a Windows 2000 domain in a separate forest.
Term
Fault tolerant     
Definition

Ability to respond gracefully to a software or hardware failure. In particular, a system is considered to be fault tolerant when it has the ability to continue providing authentication services after the failure of a domain controller.

Term
Forrest
Definition
Largest container object within Active Directory. The forest container defines the fundamental security boundary within Active Directory, which means that a user can access resources across an entire Active Directory forest using a single logon/password combination.
Term
Forest root domain     
Definition

First domain created within an Active Directory forest.

Term
Functional levels     
Definition

Designed to offer support for Active Directory domain controllers running various supported operating systems by limiting functionality to specific software versions. As legacy domain controllers are decommissioned, administrators can modify the functional levels to expose new functionality within Active Directory. Some features in Active Directory cannot be activated, for example, until all domain controllers in a forest are upgraded to a specific level.

 

Term
Globally unique identifier (GUID)     
Definition
128-bit hexadecimal number that is assigned to every object in the Active Directory forest upon its creation. This number does not change even when the object itself is renamed.
Term
Inbound replication     
Definition

Occurs when a domain controller receives updates to the Active Directory database from other domain controllers on the network.

Term
IP address     
Definition

Unique number used to identify all devices on an IP network. IP addresses are four octets long and are commonly expressed in dotted-decimal notation, such as 192.168.10.1.

Term
Knowledge Consistency Checker (KCC) 
Definition

Internal Active Directory process that automatically creates and maintains the replication topology. The KCC operates based on information provided by an administrator in the Active Directory Sites and Services snap-in that is located in the Administrative Tools folder on a domain controller or an administrative workstation that has the Administrative Tools installed.

 

Term
Leaf object     
Definition
Object, such as a domain or an organizational unit, that is used to organize other objects. Also known as a container object.
Term
Lightweight Directory Access Protocol (LDAP)     
Definition

Protocol that has become an industry standard that enables data exchange between directory services and applications. The LDAP standard defines the naming of all objects in the Active Directory database and, therefore, provides a directory that can be integrated with other directory services, such as Novell eDirectory, and Active Directory–aware applications, such as Microsoft Exchange.

 

Term
Link-value replication     
Definition

When a change is made to the member list of a group object, only the portion of the member list that has been added, modified, or deleted will be replicated.

Term
Locator service     
Definition
Active Directory DNS provides direction for network clients that need to know which server performs what function
Term
Loose consistency     
Definition

Individual domain controllers in an Active Directory database may contain slightly different information because it can take anywhere from a few seconds to several hours for changes to replicate throughout a given environment.

 

Term
Naming context (NC)     
Definition
Active Directory partition
Term
Object
Definition
Element in Active Directory that refers to a resource. Objects can be container objects or leaf objects. Containers are used to organize resources for security or organizational purposes; leaf objects refer to the end-node resources such as users, computers, and printers
Term
Organizational unit (OU)     
Definition
Container that represents a logical grouping of resources that have similar security or administrative guidelines
Term
Outbound replication
Definition
Occurs when a domain controller transmits replication information to other domain controllers on the network.
Term
Partition
Definition

Portion of Active Directory database used to divide the database into manageable pieces.

Term
Publishing
Definition
Allows users to access network resources by searching the Active Directory database for the desired resource.
Term
Read-Only Domain Controller (RODC)
Definition

Domain controller that contains a copy of the ntds.dit file that cannot be modified and that does not replicate its changes to other domain controllers within Active Directory. This feature was introduced in Windows Server 2008.

Term
Replication
Definition
Process of keeping each domain controller in sync with changes made elsewhere on the network
Term
Rolling upgrades      
Definition

Upgrade strategy based on functional levels that allows enterprises to migrate their Active Directory domain controllers gradually, based on the need and desire for the new functionality.

Term
Schema
Definition

Master database that contains definitions of all objects in the Active Directory.

Term
Schema NC     
Definition

Partition that contains the rules and definitions used for creating and modifying object classes and attributes within Active Directory.

Term
Shortcut trust     
Definition

Manually created nontransitive trust that allows child domains in separate trees to communicate more efficiently by eliminating the tree-walking of a trust path.

 

Term
Site
Definition
One or more IP subnets connected by fast links.
Term
SRV record     
Definition
Locator record within DNS that allows clients to locate an Active Directory domain controller or global catalog.
Term
Trust relationship      
Definition

Allows access between multiple domains and/or forests, either within a single forest or across multiple enterprise networks.

 

Supporting users have an ad free experience!