search

What is the primary container object for organizing and managing resources in a domain?

1 Jahrs vor
Kommentare: 0
Ansichten: 120

Skip to main content

This browser is no longer supported.

Show

Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.

Understanding the Active Directory Logical Model

  • Article
  • 07/29/2021
  • 2 minutes to read

In this article

Applies to: Windows Server 2022, Windows Server 2019, Windows Server 2016, Windows Server 2012 R2, Windows Server 2012

Designing your logical structure for Active Directory Domain Services (AD DS) involves defining the relationships between the containers in your directory. These relationships might be based on administrative requirements, such as delegation of authority, or they might be defined by operational requirements, such as the need to control replication.

Before you design your Active Directory logical structure, it is important to understand the Active Directory logical model. AD DS is a distributed database that stores and manages information about network resources as well as application-specific data from directory-enabled applications. AD DS allows administrators to organize elements of a network (such as users, computers, and devices) into a hierarchical containment structure. The top-level container is the forest. Within forests are domains, and within domains are organizational units (OUs). This is called the logical model because it is independent of the physical aspects of the deployment, such as the number of domain controllers required within each domain and network topology.

Active Directory forest

A forest is a collection of one or more Active Directory domains that share a common logical structure, directory schema (class and attribute definitions), directory configuration (site and replication information), and global catalog (forest-wide search capabilities). Domains in the same forest are automatically linked with two-way, transitive trust relationships.

Active Directory domain

A domain is a partition in an Active Directory forest. Partitioning data enables organizations to replicate data only to where it is needed. In this way, the directory can scale globally over a network that has limited available bandwidth. In addition, the domain supports a number of other core functions related to administration, including:

  • Network-wide user identity. Domains allow user identities to be created once and referenced on any computer joined to the forest in which the domain is located. Domain controllers that make up a domain are used to store user accounts and user credentials (such as passwords or certificates) securely.

  • Authentication. Domain controllers provide authentication services for users and supply additional authorization data such as user group memberships, which can be used to control access to resources on the network.

  • Trust relationships. Domains can extend authentication services to users in domains outside their own forest by means of trusts.

  • Replication. The domain defines a partition of the directory that contains sufficient data to provide domain services and then replicates it between the domain controllers. In this way, all domain controllers are peers in a domain and are managed as a unit.

Active Directory organizational units

OUs can be used to form a hierarchy of containers within a domain. OUs are used to group objects for administrative purposes such as the application of Group Policy or delegation of authority. Control (over an OU and the objects within it) is determined by the access control lists (ACLs) on the OU and on the objects in the OU. To facilitate the management of large numbers of objects, AD DS supports the concept of delegation of authority. By means of delegation, owners can transfer full or limited administrative control over objects to other users or groups. Delegation is important because it helps to distribute the management of large numbers of objects across a number of people who are trusted to perform management tasks.

Feedback

Submit and view feedback for

Additional resources

Additional resources

In this article

What is the primary container object for organizing and managing resources in a domain?

mnovelo - Fotolia

How much do you know about Active Directory? Find out with this Active Directory quiz on the service's basics, structure and capabilities.

What is the primary container object for organizing and managing resources in a domain?

By

  • Stephen J. Bigelow,

Published: 17 Oct 2018

Administrators need to know the ins and outs of Active Directory to maintain order over the vast resources within their enterprise network. This Active Directory quiz will put your knowledge to the test.

Active Directory centralizes the creation, access and management of a wide array of objects, such as users, groups, computers and printers. Each object can be associated with detailed metadata, such as object names, descriptions and attributes.

How well do you really know this Windows Server feature? Take this Active Directory quiz to check your knowledge of Active Directory and its application in the enterprise.

Dig Deeper on Windows Server OS and management

  • What is the primary container object for organizing and managing resources in a domain?
    Active Directory tree

    What is the primary container object for organizing and managing resources in a domain?

    By: Rahul Awati

  • What is the primary container object for organizing and managing resources in a domain?
    Active Directory Domain Services (AD DS)

    What is the primary container object for organizing and managing resources in a domain?

    By: Ben Lutkevich

  • What is the primary container object for organizing and managing resources in a domain?
    active directory

    What is the primary container object for organizing and managing resources in a domain?

    By: Wesley Chai

  • What is the primary container object for organizing and managing resources in a domain?
    Azure AD Premium P1 vs. P2: Which is right for you?

    What is the primary container object for organizing and managing resources in a domain?

    By: Adam Fowler

Latest TechTarget resources
  • Cloud Computing
  • Enterprise Desktop
  • Virtual Desktop

Cloud Computing

  • AWS rolls out new EC2 instances at re:Invent 2022

    The wrong instance type can affect workload performance and even increase costs. This year at re:Invent, AWS released new EC2 ...

  • Amazon, Google, Microsoft, Oracle win JWCC contract

    The Department of Defense Joint Warfighting Cloud Capability contract allows DOD departments to acquire cloud services and ...

  • HPE GreenLake for Private Cloud updates boost hybrid clouds

    HPE continues investing in GreenLake for private and hybrid clouds as demand for those services increases. Meanwhile, competition...

Enterprise Desktop

  • The enterprise endpoint device market heading into 2023

    Modern enterprise organizations have numerous options to choose from on the endpoint market. Learn about some of the main ...

  • How to monitor Windows files and which tools to use

    Monitoring files on Windows systems is critical to detect suspicious activities, but there are so many files and folders to keep ...

  • How will Microsoft Loop affect the Microsoft 365 service

    While Microsoft Loop is not yet generally available, Microsoft has released details about how Loop can connect users and projects...

Virtual Desktop

  • How to fix a remote desktop microphone that's not working

    Hybrid work can create new technical issues for employees, and a remote desktop microphone not working is one frustrating ...

  • Enabling and supporting webcam use on remote desktops

    When IT teams manage employees using remote desktops, they should make sure they can set up and troubleshoot peripheral devices, ...

  • Automating testing and delivery for virtual apps and desktops

    One of the many tasks that come with maintaining a virtual environment is the testing and delivery of virtual apps and desktops. ...

What is the primary container object that can be used for organizing and managing resources in a domain?

Organizational Units (OU) - a container used to organize objects within the domain into logical administrative groups that mirror the function business structure of an organization. Some characteristics: Can contain objects such as user accounts, groups, computers, printers, etc.

What is used to identify all objects in a domain?

You can identify the domain object to get by its distinguished name, GUID, Security Identifier (SID), DNS domain name, or NetBIOS name.

What type of Active Directory replication takes place between domain controllers in the same site?

Intrasite replication takes place between servers in a site using RPCs, while intersite replication is mail based and takes place over a Directory Replication Connector (DRC) between bridgehead servers in separate sites.

What command will allow you to find and display objects in Active Directory?

The dsquery * command can find any type of Active Directory object. For help with the specific parameters and syntax for each type of object, type dsquery ObjectType /? at a command prompt. For example, dsquery computer /?

primary container object organizing managing resources domain

zusammenhängende Posts

What is the primary difference between acute illness and chronic illness Quizlet
What is the primary difference between acute illness and chronic illness Quizlet

What is the primary reason that the loss of manufacturing jobs hurts the financial well being of Americas workers?
What is the primary reason that the loss of manufacturing jobs hurts the financial well being of Americas workers?

Which Gestalt law states that the human mind combines the visual information available to form a meaningful object?
Which Gestalt law states that the human mind combines the visual information available to form a meaningful object?

Which of these methods of class String is used to obtain length of String object?
Which of these methods of class String is used to obtain length of String object?

An inanimate object that may be contaminated with a pathogen is called a ________.
An inanimate object that may be contaminated with a pathogen is called a ________.

Which of the following services in AWS allows for object level storage on the cloud?
Which of the following services in AWS allows for object level storage on the cloud?

According to the initiative versus guilt stage, the primary purpose of play is to gain
According to the initiative versus guilt stage, the primary purpose of play is to gain

Who has primary responsibility for the monitoring component of internal control?
Who has primary responsibility for the monitoring component of internal control?

Which of the following is one of the primary political causes of international market instability?
Which of the following is one of the primary political causes of international market instability?

What term describes the repetition of actions that produce pleasurable or interesting results?
What term describes the repetition of actions that produce pleasurable or interesting results?

Werbung

NEUESTEN NACHRICHTEN

Borderline wer ist schuld
1 Jahrs vor . durch LunarLine-up
Wer hat mich auf Instagram blockiert
1 Jahrs vor . durch IncipientHeader
Wie geht es dir was soll ich antworten?
1 Jahrs vor . durch SolubleAuthority
Kind 1 Jahr wie oft Fleisch
1 Jahrs vor . durch ThirstyRepublic
Was müssen Sie bei der Beladung von Fahrzeugen zu beachten?
1 Jahrs vor . durch WaxedHeadquarters
Schütz Die Himmel erzählen die Ehre Gottes
1 Jahrs vor . durch ExtrinsicSaucer
In planning an IS audit, the MOST critical step is the identification of the
1 Jahrs vor . durch SteepPanther
Wie lange darf eine Kaution einbehalten werden?
1 Jahrs vor . durch SeasonalBanjo
Sarah connor nicht bei voice of germany
1 Jahrs vor . durch FloridIceberg
Kann man mit dem Fachabitur Jura studieren?
1 Jahrs vor . durch PolarIndecency

Werbung

Populer

Werbung

Um

Legal

Hilfe

Sozial

homeendefrjpkoptzhhiitthtr
Urheberrechte © © 2024 ketiadaan Inc.