Upload File

corso referenti s.i.r.a. – modulo 2 06 – active directory 20/11 – 27/11 – 05/12 11/12 –...

  • Home
  • Documents
  • Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano
19
Corso referenti S.I.R.A. – Corso referenti S.I.R.A. – Modulo 2 Modulo 2 06 – Active Directory 06 – Active Directory 20/11 – 27/11 – 05/12 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano Viola Cristiano Gentili, Massimiliano Viola (CSIA) (CSIA)

Upload: sara-horton

Post on 25-Dec-2015

214 views

Category:

Documents


0 download

Report

Tags:

TRANSCRIPT

Page 1: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

Corso referenti S.I.R.A. – Modulo 2Corso referenti S.I.R.A. – Modulo 2

06 – Active Directory06 – Active Directory

20/11 – 27/11 – 05/1220/11 – 27/11 – 05/12

11/12 – 13/12 (gruppo 1)11/12 – 13/12 (gruppo 1)

12/12 – 15/12 (gruppo 2)12/12 – 15/12 (gruppo 2)

Cristiano Gentili, Massimiliano Viola (CSIA)Cristiano Gentili, Massimiliano Viola (CSIA)

Page 2: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

OverviewOverview

Introduction to Active DirectoryIntroduction to Active Directory

Active Directory Logical StructureActive Directory Logical Structure

Active Directory Physical StructureActive Directory Physical Structure

Methods for Administering a Windows 2000 Methods for Administering a Windows 2000 NetworkNetwork

Page 3: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

• Introduction to Active DirectoryIntroduction to Active Directory

What Is Active Directory?What Is Active Directory?

Active Directory ObjectsActive Directory Objects

Active Directory SchemaActive Directory Schema

Lightweight Directory Access Protocol (LDAP)Lightweight Directory Access Protocol (LDAP)

Page 4: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

What Is Active Directory?What Is Active Directory?

Directory Service Directory Service FunctionalityFunctionality

Directory Service Directory Service FunctionalityFunctionality

Organize Manage Control

Organize Manage Control

ResourcesResources

Centralized ManagementCentralized ManagementCentralized ManagementCentralized Management

Single point of administration

Full user access to directory resources by a single logon

Single point of administration

Full user access to directory resources by a single logon

Page 5: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

Active Directory ObjectsActive Directory Objects

Objects Represent Network ResourcesObjects Represent Network Resources

Attributes Store Information About an ObjectAttributes Store Information About an Object

AttributesAttributesAttributesAttributesFirst NameLast NameLogon Name

First NameLast NameLogon Name

AttributesAttributesAttributesAttributes

Printer NamePrinter LocationPrinter NamePrinter Location

Active DirectoryActive DirectoryActive DirectoryActive Directory

PrintersPrinter1

Printer2

Suzan Fine

UsersDon Hall

AttributeAttributeValueValue

AttributeAttributeValueValue

ObjectsObjectsObjectsObjects

PrintersPrinters

UsersUsers

Printer3

Page 6: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

Active Directory SchemaActive Directory Schema

ObjectsObjectsClass ExamplesClass Examples

ObjectsObjectsClass ExamplesClass Examples

PrintersPrinters

ComputersComputers

UsersUsers

Attributes of Users Attributes of Users Might Contain:Might Contain:

Attributes of Users Attributes of Users Might Contain:Might Contain:

accountExpiresdepartmentdistinguishedNamemiddleName

accountExpiresdepartmentdistinguishedNamemiddleName

List of AttributesList of AttributesList of AttributesList of Attributes

accountExpiresdepartmentdistinguishedNamedirectReportsdNSHostNameoperatingSystemrepsFromrepsTomiddleName…

accountExpiresdepartmentdistinguishedNamedirectReportsdNSHostNameoperatingSystemrepsFromrepsTomiddleName…

Attribute Attribute ExamplesExamplesAttribute Attribute ExamplesExamples

Active Directory Schema Is: Dynamically Available Dynamically Updateable Protected by DACLs

Page 7: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

Lightweight Directory Access Protocol (LDAP)Lightweight Directory Access Protocol (LDAP)

LDAP Provides a Way to Communicate with Active LDAP Provides a Way to Communicate with Active Directory by Specifying Unique Naming Paths for Directory by Specifying Unique Naming Paths for Each Object in the Directory Each Object in the Directory

LDAP Naming Paths IncludeLDAP Naming Paths Include: :

Distinguished namesDistinguished names

Relative distinguished namesRelative distinguished names

CN=RossiMario,OU=Studenti,DC=ds,DC=units,DC=it

Page 8: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

• Active Directory Logical StructureActive Directory Logical Structure

DomainsDomains

Organizational UnitsOrganizational Units

Trees and ForestsTrees and Forests

Page 9: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

DomainsDomains

A Domain Is a Security BoundaryA Domain Is a Security Boundary

A domain administrator can administer only A domain administrator can administer only within the domain, unless explicitly granted within the domain, unless explicitly granted administration rights in other domainsadministration rights in other domains

A Domain Is a Unit of ReplicationA Domain Is a Unit of Replication

Domain controllers in a domain participate Domain controllers in a domain participate in replication and contain a complete copy in replication and contain a complete copy of the directory information for their domainof the directory information for their domain

Windows 2000Domain

Windows 2000Domain

User1

User2User1

User2ReplicationReplicationReplicationReplication

Page 10: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

Organizational UnitsOrganizational Units

Organizational StructureOrganizational StructureOrganizational StructureOrganizational Structure

Sales

Vancouver

Repair

Users

Sales

Computers

Network Administrative ModelNetwork Administrative ModelNetwork Administrative ModelNetwork Administrative Model

Use OUs to Group Objects into a Logical Hierarchy Use OUs to Group Objects into a Logical Hierarchy That Best Suits the Needs of Your OrganizationThat Best Suits the Needs of Your Organization

Delegate Administrative Control over the Objects Delegate Administrative Control over the Objects Within an OUWithin an OU by Assigning Specific Permissions to by Assigning Specific Permissions to Users and GroupsUsers and Groups

Page 11: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

Trees and ForestsTrees and Forests

contoso.msftcontoso.msft

(root)

au. contoso.msft

au. contoso.msft

asia. contoso.msft

asia. contoso.msft

Tree

Two-Way Transitive TrustsTwo-Way Transitive TrustsTwo-Way Transitive TrustsTwo-Way Transitive Trusts

au. nwtraders.msft

au. nwtraders.msft

asia. nwtraders.msft

asia. nwtraders.msft

nwtraders.msftnwtraders.msft

Forest

Tree

Two-Way Transitive TrustTwo-Way Transitive TrustTwo-Way Transitive TrustTwo-Way Transitive Trust

Page 12: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

Global CatalogGlobal Catalog

Global Catalog Server

Global CatalogGlobal CatalogGlobal CatalogGlobal Catalog

Subset of the Attributes of All

Objects

Subset of the Attributes of All

Objects

DomainDomain

Domain

DomainDomain

Domain

QueriesQueriesQueriesQueries

Group membershipGroup membershipwhen user logs onwhen user logs on

Group membershipGroup membershipwhen user logs onwhen user logs on

Page 13: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

• Active Directory Physical Active Directory Physical StructureStructure

Domain ControllersDomain Controllers

SitesSites

Page 14: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

Domain ControllersDomain Controllers

Domain Controller

Domain Controller

DomainDomain

ReplicationReplicationReplicationReplicationUser1

User2User1

User2

= A Writeable Copy of the Active Directory Database= A Writeable Copy of the Active Directory Database

Domain Controllers:

Participate in Active Directory replication

Perform single master operations roles in a domain

Page 15: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

SitesSites

Sites:

Optimize replication traffic

Enable users to log on to a domain controller by using a reliable, high-speed connection

SiteIP subnetIP subnetIP subnetIP subnet

IP subnetIP subnetIP subnetIP subnet

Los Angeles

Seattle

ChicagoNew York

Page 16: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

• Methods for Administering a Methods for Administering a Windows 2000 NetworkWindows 2000 Network

Using Active Directory for Centralized Using Active Directory for Centralized ManagementManagement

Managing the User EnvironmentManaging the User Environment

Delegating Administrative ControlDelegating Administrative Control

Page 17: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

Using Active Directory for Centralized ManagementUsing Active Directory for Centralized Management

OU1

Domain

Computers

Users

OU2

Users

Printers

Computer1

User1

Printer1

User2

DomainDomainOU2OU2OU1OU1

User1User1 Computer1Computer1 Printer1Printer1User2User2

SearchSearchSearchSearch

Active Directory:Active Directory:Enables a single administrator to centrally manage Enables a single administrator to centrally manage resourcesresourcesAllows administrators to easily locate information Allows administrators to easily locate information Allows administrators to group objects into OUsAllows administrators to group objects into OUsUses Group Policy to specify policy-based settingsUses Group Policy to specify policy-based settings

Page 18: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

Managing the User EnvironmentManaging the User Environment

Use Group Policy to:Use Group Policy to:Control and lock down what users can doControl and lock down what users can do

Centrally manage software installation, repairs, updates, Centrally manage software installation, repairs, updates, and removaland removal

Configure user data to follow users whether they are Configure user data to follow users whether they are online or offlineonline or offline

Windows 2000 Enforces Continually

Windows 2000 Enforces Continually

Apply Group Policy Once

Apply Group Policy Once

11 22 33DomainDomain

OU1OU1 OU2OU2 OU3OU3

11 22 3 3

Page 19: Corso referenti S.I.R.A. – Modulo 2 06 – Active Directory 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

Delegating Administrative ControlDelegating Administrative Control

Assign Permissions:For specific OUs to other

administratorsTo modify specific attributes of

an object in a single OUTo perform the same task in all OUs

Customize Administrative Tools to:Map to delegated administrative tasksSimplify interface design

Domain

Admin1

Admin2

Admin3

OU2

OU3

OU1


Gruppo 05 Intro Gruppo

MEDIOBANCA PROFILO DI GRUPPO · 2020. 12. 10. · Agenda 1. Il Gruppo Mediobanca a) Dati di Gruppo in sintesi b) Wealth Management c) Consumer Banking d) Corporate & Investment Banking

S.I.R.A. 1 Reflexiones sobre la normalización en el estudio de … · 2016-01-05 · 404 CIRA-ARQUEOLOGIA III – ATAS - CONGRESSO CONQUISTA E ROMANIZAÇÃO DO VALE DO TEJO S.I.R.A

INSTALLATION AND MAINTENANCE INSTRUCTIONS r q GB Asset Library/Solenoid-Valves-WPIS-WSIS... · 10. Gruppo sede 11. Anello di ritenuta, Gruppo sede 12. Gruppo cartuccia 13. Anello

volantino Gruppo Castoldi e Gruppo Galimberti

€¦ · ITALIANO 1 GRUPPO EUROINOX A.D.. GRUPPO EURO A.D.. GRUPPO JETINOX A.D..- GRUPPO JET A.D. … GRUPPO KVC A.D. ... GRUPPO KVCX A.D. ... 296a 25 – Tappo di carico elettropompa

Gruppo 12 Per una nuova formazione degli insegnanti di

AZIENDE GRUPPO B e C 12 ORE - Teknoprogetti Engineering Srl

F.Ambrosino Napoli, Riunione Gruppo 1 21/12/2006

Corso referenti S.I.R.A. – Modulo 2 Local Security 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

Notiziario Associativo Anla · Gruppo Seniores Associazione Irrigazione Est Sesia, Gruppo Seniores Carisbo, Gruppo Seniores Fondiaria Sai, Gruppo Seniores Ina Assitalia, Gruppo Seniores

Il Gruppo in cifre - Gruppo Pittini

MoVimento 5 Stelle Napoli - Cittadini informati ed attivi€¦ · Gruppo: Prima Napoli Gruppo: Forza Italia Gruppo: Movimento Cinque Stelle Gruppo: Napoli Popolare Gruppo: Riformisti

Corso referenti S.I.R.A. – Modulo 2

Presentazione gruppo diamec settembre 08 it · 2012. 12. 17. · GRUPPO DIAMEC Via G. Nickmann, 12/A – I 70123 BARI Z.I. – ITALY tel. +390805383572 – fax +390805313769 e-mail

Gruppo Italiano Cardiologia Riabilitativa e Preventiva · 2017-12-21 · GICR . Gruppo . Italiano . Cardiologia . Riabilitativa e Preventiva . STRUTTURA DEL DOCUMENTO Manuale Metodologico

Gruppo 12: Il testo poetico

Ferrarascuole.comune.fe.it/3438/attach/aldacosta/docs/... · 3B gruppo 2 3B gruppo 2 3F gruppo 1 3F gruppo 1 3F gruppo 2 3F gruppo 2 8.30 - 11.00 - 8.30 - 11.00 - 8.30- 9.40 — 11.00

Amminoacidi (1) Gruppo carbossilico Gruppo amminico Gruppo laterale (R) -amminoacidi 1

1. PRIMO LABORATORIO L E IDEE PIÙ RILEVANTI, EMERSE DAI LAVORI DI LABORATORIO gruppo 1 gruppo 2 gruppo 3 gruppo 4 gruppo 5 gruppo 6 gruppo 7 gruppo 8

Islamismo in Algeria. Dal Gruppo Islamico Armato (GIA) al · 2016-12-13 · Islamismo in Algeria. Dal Gruppo Islamico Armato (GIA) al Gruppo Salafita per la Predicazione ed il Combattimento

Www.progettoinnesto.it 13/12/2011: Start up Gruppo Linkedin Progetto Innesto

GRUPPO - Banca Intermobiliare · GRUPPO. LE SOCIETÀ DEL GRUPPO Symphonia Sgr S.p.A. Milano: 20121 - Corso Matteotti, 5 ... risultati ed andamento della gestione in sintesi 12 conto

Bilancio 2017 - recordati.com · 4 recordati, un gruppo internazionale 6 il futuro del gruppo 7 65lettera agli azionisti 10 il gruppo in cifre 12 presenza geografica 14 le attivitÀ

Gruppo tavolo economia cagliari - 15 12 2013

Presentazione gruppo 12 A K Nacira

4° numero C'E' Gruppo Foto CEDAS maggio 12

Corso referenti S.I.R.A. – Modulo 2 Windows Client & Server Security 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano

Stage astrofisica 2010- 12. I colori dell'Universo - Gruppo Fisica Alte Energie

Corso referenti S.I.R.A. – Modulo 2 04 - Disaster Recovery 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano

Gruppo, gruppo di lavoro, lavoro di gruppo Quando si parla di gruppo e di gruppo di lavoro si identificano dei soggetti sociali che, apparentemente sono

Report Gruppo Notes 06 12

F.Ambrosino Napoli, Riunione Gruppo 1 21/12/2006

L’ DELLA DEPURAZIONE IN P€¦ · Gruppo 3 – Taranto – per n. 18 impianti Gruppo 2 – Bari – per n. 12 impianti Gruppo 1 – BAT – per n. 8 impianti L’architettura generale

1969 03 21 Terra e Libertà di Gruppo l'iconoclasta...1969 03 21 Terra e Libertà di Gruppo l'iconoclasta.pdf Created Date: 12/21/2014 5:23:12 PM