AD Intro

Active Directory (AD) is a directory service developed by Microsoft for Windows domain networks. It is included in most Windows Server operating systems and is used to manage and organize resources, such as users, computers, printers, and other devices, within a network. Active Directory provides a centralized and standardized system for managing these resources, making it easier for administrators to control access and enforce security policies.

Here are some key components and features of Active Directory:

1. Domain: A domain is a logical grouping of network objects (users, computers, devices) that share a common directory database. Domains are defined by a unique name and are managed as a single unit with common rules and procedures.

2. Domain Controller (DC): A domain controller is a server that runs Active Directory and manages user access to network resources. It authenticates and authorizes all users and computers in a Windows domain, enforcing security policies and ensuring that only authorized users can access specific resources.

3. Objects: Active Directory stores information about network resources as objects. Each object represents a single entity, such as a user, group, computer, or printer. Objects have attributes that contain information about the resource, such as a user's name, password, and group memberships.

4. Organizational Units (OUs): OUs are containers within a domain that allow administrators to group objects for easier management. OUs can be used to delegate administrative tasks, apply group policies, and organize objects in a way that reflects the structure of the organization.

5. Group Policy: Group Policy is a feature of Active Directory that allows administrators to define and enforce settings for users and computers across the network. Group Policy Objects (GPOs) can be used to configure security settings, deploy software, and manage desktop environments.

6. Trusts: Trusts are relationships established between domains to allow users in one domain to access resources in another domain. Trusts can be one-way or two-way and can be transitive or non-transitive, depending on the level of access required.

7. Schema: The schema defines the structure and content of the Active Directory database. It includes the types of objects that can be stored, the attributes of those objects, and the relationships between objects. The schema can be extended to include custom object types and attributes.

8. Global Catalog: The Global Catalog is a distributed data repository that contains a subset of the attributes of all objects in the Active Directory Forest. It enables users and applications to find directory information quickly, regardless of where the data is stored in the forest.

9. Replication: Active Directory uses replication to ensure that changes made to the directory on one domain controller are synchronized with all other domain controllers in the domain. This ensures consistency and availability of directory data.

Active Directory is widely used in enterprise environments to provide a scalable and secure way to manage network resources. It simplifies administrative tasks, enhances security, and improves the overall efficiency of network management.