© Copyright Nanda Ganesan1 CHAPTER NT Domains. © Copyright Nanda Ganesan2 Chapter Objectives Give an overall picture of the NT networking architecture.

Slides:



Advertisements
Similar presentations
Chapter Five Users, Groups, Profiles, and Policies.
Advertisements

Chapter 7 LAN Operating Systems LAN Software Software Compatibility Network Operating System (NOP) Architecture NOP Functions NOP Trends.
Active Directory: Final Solution to Enterprise System Integration
70-294: MCSE Guide to Microsoft Windows Server 2003 Active Directory, Enhanced Chapter 1: Introduction to Active Directory.
Chapter 4 Chapter 4: Planning the Active Directory and Security.
6.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
3.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.
MCDST : Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 6: Configure and Troubleshoot Local User and Group Accounts.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
Administering Active Directory
Understanding Networks I. Objectives Compare client and network operating systems Learn about local area network technologies, including Ethernet, Token.
Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
Chapter 8 Chapter 8: Managing the Server Through Accounts and Groups.
Chapter 8: Network Operating Systems and Windows Server 2003-Based Networking Network+ Guide to Networks Third Edition.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 7 Configuring File Services in Windows Server 2008.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.
1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.
ADVANCED MICROSOFT ACTIVE DIRECTORY CONCEPTS
Lesson 17. Domains and Active Directory. Objectives At the end of this Presentation, you will be able to:
11 REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS Chapter 1.
Exploring Directory Services. Need for DS Multiple servers, multiple services in single network –Multiple servers for reliability, security, optimizing.
70-270: MCSE Guide to Microsoft Windows XP Professional Chapter 5: Users, Groups, Profiles, and Policies.
MCTS Guide to Configuring Microsoft Windows Server 2008 Active Directory Chapter 3: Introducing Active Directory.
1 Chapter Overview Network Operating Systems Network Clients Directory Services.
Chapter 4 Windows NT/2000 Overview. NT Concepts  Domains –A group of one or more NT machines that share an authentication database (SAM) –Single sign-on.
Network Operating Systems : Tasks and Examples Instructor: Dr. Najla Al-Nabhan
1 Group Account Administration Introduction to Groups Planning a Group Strategy Creating Groups Understanding Default Groups Groups for Administrators.
Chapter 7: WORKING WITH GROUPS
Designing Active Directory for Security
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.
Managing Groups, Folders, Files and Security Local Domain local Global Universal Objects Folders Permissions Inheritance Access Control List NTFS Permissions.
Chapter Two Defining Network Objects. Chapter Objectives Describe how a workstation communicates with the network, and list the software components required.
Active Directory Administration Lesson 5. Skills Matrix Technology SkillObjective DomainObjective # Creating Users, Computers, and Groups Automate creation.
Module 7 Active Directory and Account Management.
© Wiley Inc All Rights Reserved. MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition.
70-270: MCSE Guide to Microsoft Windows XP Professional 1 Windows XP Professional User Accounts Designed for use as a network client for: Windows NT Windows.
Company Confidential 1 A Course on Global Catalog And Flexible Single Master Operations (Fsmo) Roles Prepared for: *Stars* New Horizons Certified Professional.
Chapter Two Clients and Servers: Who’s the Boss?.
1 Administering Shared Folders Understanding Shared Folders Planning Shared Folders Sharing Folders Combining Shared Folder Permissions and NTFS Permissions.
CHAPTER Creating and Managing Users and Groups. Chapter Objectives Explain the use of Local Users and Groups Tool in the Systems Tools Option to create.
NT SECURITY Introduction Security features of an operating system revolve around the principles of “Availability,” “Integrity,” and Confidentiality. For.
Configuring File Services. Using the Distributed File System Larger enterprises typically use more file servers Used to improve network performce Reduce.
Chapter 10: Rights, User, and Group Administration.
Microsoft enterprise concepts. NT Layered Network Architecture Network Interface Card Network Adapter Card Drivers NDIS InterfaceStreams Transport Protocols.
Lecture 6: Examples on Windows Operating Systems.
1 © Copyright N Ganesan CHAPTER Exploring the Installed Network Properties.
Introduction to Active Directory
CHAPTER Windows Server Management. Chapter Objectives Give an overview of the Server Manager Provide details of accessing the Server Manager Explain the.
11 GLOBAL CATALOG AND FLEXIBLE SINGLE MASTER OPERATIONS (FSMO) ROLES Chapter 4.
CEG 2400 Fall 2012 Directory Services Active Directory Tree Domain.
Chapter 6 Server Management: Domains Workgroup Domain Trust Relationship Examples.
1 CEG 2400 Fall 2012 eDirectory – Directory Service.
Module 1: Introduction to Windows 2000 and Networking.
MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition (70-294) Chapter 1: Overview of the Active.
Copyright © 2006 Heathkit Company, Inc. All Rights Reserved Introduction to Networking Technologies Introduction to Networking.
6/19/2016 أساسيات الأتصال و الشبكات Communication & Networks Fundamentals lab 4.
CHAPTER Network Operating System Concepts. Chapter Objectives Provide an overview of network operating systems and its functions Explain the concept of.
ACTIVE DIRECTORY ADMINISTRATION
Network Operating Systems Examples
Active Directory Administration
Objectives Differentiate between the different editions of Windows Server 2003 Explain Windows Server 2003 network models and server roles Identify concepts.
Networks Software.
An Introduction to Computer Networking
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 4: Implementing and Managing Group and Computer Accounts.
CHAPTER Introduction to LANs
Course Name : Network Operating System Course Code: CNET 332 These slides are only meant for course delivery. For all your Exams refer to your text book.
Overview of Client Configuration
Active Directory Overview
Course Name : Network Operating System Course Code: CNET 332
Presentation transcript:

© Copyright Nanda Ganesan1 CHAPTER NT Domains

© Copyright Nanda Ganesan2 Chapter Objectives Give an overall picture of the NT networking architecture Explain the concept of domain Describe the different domain models Examine the role of the main constituents, namely the users, in the domain Discuss various types of user accounts –Group, built-in etc

© Copyright Nanda Ganesan3 Chapter Modules Windows NT Network Architecture An Overview of Domains Domain Models An Overview of Group and User Accounts Built-in User and Group Accounts

4 MODULE Windows NT Network Architecture

© Copyright Nanda Ganesan5 Module Objectives Microsoft network architectures The workgroup The domain A servers role in a domain A typical domain Domain architecture with fault tolerance Domain architecture with multiple server types

© Copyright Nanda Ganesan6 MS Network Architectures Workgroup based architecture Domain based architecture Active Directory

© Copyright Nanda Ganesan7 Workgroup Peer-to-Peer architecture Each workstation maintains its own Security Account Manager (SAM) database Examples: –Windows 95 –Windows for Workgroup Usage –Low cost peer-to-peer applications Mostly share-level control

© Copyright Nanda Ganesan8 Domain Client-Server architecture Contains at least one server and workstations Security Account Manager(SAM) database –Maintained on a server designated to be a domain controller Share-level as well as user-level controls are possible

© Copyright Nanda Ganesan9 The Role of a Server in a Domain Primary Domain Controller (PDC) Backup Domain Controller (BDC) Stand-alone Server

© Copyright Nanda Ganesan10 A Typical Domain PDCClient Server

© Copyright Nanda Ganesan11 A Domain Architecture with Fault Tolerance PDCBDC Client SAM Copy of SAM

© Copyright Nanda Ganesan12 Domain Architecture with All Three Types of Servers PDCBDC ServerClient Stand-alone

© Copyright Nanda Ganesan13 END OF MODULE

14 MODULE An Overview of Domains

© Copyright Nanda Ganesan15 Module Objectives Domain defined A simple domain Multiple domains Trust: The binding between domains A simple example of trust

© Copyright Nanda Ganesan16 Domain Defined Grouping of users Grouping of resources Definition of Access Rights and Access Controls

© Copyright Nanda Ganesan17 A Simple Domain Domain Users/ Administrators Resources

© Copyright Nanda Ganesan18 Large Network Multiple Domains Domain A Domain B Domain C

© Copyright Nanda Ganesan19 Trust: The Binding Between Domains The binding factor of multiple domains Domains can trust one another A user from a trusted domain can enter a trusting domain without authentication

© Copyright Nanda Ganesan20 Trust: A Simple Example Domain ADomain B Trust Domain B trusts domain A. Users entering Domain A can enter Domain B without further validation.

© Copyright Nanda Ganesan21 END OF MODULE

22 MODULE Domain Models

© Copyright Nanda Ganesan23 Module Objectives Major NT domain models A single domain model Constituents of a domain Users and resources Need for multiple domains Master domain model Multiple master domain model The complete trust model

© Copyright Nanda Ganesan24 NT Domain Models Single Domain Master Domain Multiple-Master Domain Complete Trust

© Copyright Nanda Ganesan25 A Simple Example of a Single Domain PDCClient Server Domain A Administrator User

© Copyright Nanda Ganesan26 Basic Constituents of a Domain Users Resources

© Copyright Nanda Ganesan27 Users and Resources Users and administrators can be of different types –Administrators, server operators, domain users etc. Resources can be of different types –Workstations, printers, modems etc.

© Copyright Nanda Ganesan28 Need for Multiple Domains Single Domain –Manageable number of users –Facilitates simple and centralized management Move to Multiple Domain –Slow response due to a large number of users in a single domain –If multiple domains are desired due to modular organizational structure

© Copyright Nanda Ganesan29 Master Domain Model Domain A (Master) Domain B (Trusting) Domain C (Trusting)

© Copyright Nanda Ganesan30 Master Domain Characteristics Centralized control of security Flexibility to manage locally Browsing load is distributed among the domains Master domain limitation may require expansion to the next model –Limited to 26,000 users for instance

© Copyright Nanda Ganesan31 Multiple Master Domain Model Domain A (Master) Domain B (Master) Domain D (Trusting) Domain C (Trusting)

© Copyright Nanda Ganesan32 Multiple Master Domain Characteristics The same advantages as the Master Domain model –Centralized security –Flexibility to manage the resources locally –etc. Advantage of being able to expand to cover a larger Enterprise Disadvantage of becoming complicated with too many domains and trust relationships

© Copyright Nanda Ganesan33 The Complete Trust Model Domain A (Master) Domain B (Master) Domain D (Trusting) Domain C (Trusting)

© Copyright Nanda Ganesan34 The Complete Trust Model Characteristics Flexible operation –Reduces the load on any one or more master domain No centralized control on security –Hence, this model is not the model of choice by the IS departments

© Copyright Nanda Ganesan35 END OF MODULE

36 MODULE An Overview of Group and User Accounts

© Copyright Nanda Ganesan37 Module Objectives User participation in domains User rights and access to resources Restrictions on usage of resources Types of user accounts and groups Global groups Local groups Global user accounts Local user accounts

© Copyright Nanda Ganesan38 User Participation in Domains A user account basically specifies a user’s access rights to the resources Accounts can be individual user accounts or group accounts The scope can be global or local in the case of user accounts

© Copyright Nanda Ganesan39 User Rights and Access to Resources Account Resource User Resource

© Copyright Nanda Ganesan40 Restrictions User Resource Restriction on user account.Restriction on resource.

© Copyright Nanda Ganesan41 Types of User Accounts and Groups Groups –Global –Local User Accounts –Global –Local

© Copyright Nanda Ganesan42 Global Groups Constitute user accounts created in any one domain –It cannot contain users from any other groups or domains Users in a Global Group can be assigned privileges in the following: –Domain of creation –Trusting domain

© Copyright Nanda Ganesan43 Global Group Privileges Domain A Domain B Trust Privileges Global Group

© Copyright Nanda Ganesan44 Local Groups Can be assigned privileges only in the domain in which they were created May contain both local users and global groups One of the purposes is to manage access to local resources locally

© Copyright Nanda Ganesan45 Global User Accounts User accounts that can be used in domains other than those in which they were created –Through trust relationships In multi-domain models Global User accounts are desirable

© Copyright Nanda Ganesan46 Local User Accounts Originate largely in a non-NT network environment –Novell NetWare Confined to the domain in which they are created with the exception of inclusion in global and local groups Enables accounts created in NetWare, IBM LAN Server etc. to participate in Windows NT networking

© Copyright Nanda Ganesan47 END OF MODULE

48 MODULE Built-in User and Group Accounts

© Copyright Nanda Ganesan49 Module Objectives An overview of built-in groups An overview of built-in users Domain administrator Account operator User Domain user Assignment of user account

© Copyright Nanda Ganesan50 Built-in Groups Administrator Domain Administrator Backup Operator Server Operator Account Operator Print Operator Power Users

© Copyright Nanda Ganesan51 Built-in Users Cont. Users Domain Users Guests Domain Guests Replicator

© Copyright Nanda Ganesan52 Domain Administrator Entrusted with all the administrative functions Access to nearly all the resources and user accounts Automatically included in all the trusting domains

© Copyright Nanda Ganesan53 Account Operator Create, delete and modify most user accounts Exception in controlling user accounts –Administrators and operators of different types such as server operators etc. User rights cannot be assigned by account operators

© Copyright Nanda Ganesan54 User Most users fall into this category They access resources on the domain

© Copyright Nanda Ganesan55 Domain User Constitute all user accounts in a domain They can be included in other domains in a multi-domain network

© Copyright Nanda Ganesan56 Assignment of User Accounts Each account has its own set of pre- defined privileges In most cases, a user may be conveniently assigned to a built-in account type Additional modifications may be carried out as needed

© Copyright Nanda Ganesan57 END OF MODULE END OF CHAPTER

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.