05 Using The DNS Service and Active Directory Services

Revision no.
: PPT/2K403/02
Using the DNS Service and

Active Directory Services
(70-270)
Revision no.: PPT/2K403/02
Lesson 1: Understanding DNS

2
Domain Name Space
Domain Naming Guidelines
Zones
Name Servers
CMS INSTITUTE, 2004. All rights reserved. No part of this material may be reproduced, stored or emailed without the prior permission of Programme Director, CMS Institute
Domain Name Space

3
.
.
org.
org. com.
com. edu.
edu. au.
au.
microsoft.com.
sales.microsoft.com.
sales.microsoft.com.
Subdomain
Subdomain Second-Level
Second-Level Domain
Domain Top-Level
Top-Level Domain
Domain Root
Root
Domain Naming Guidelines

4
Limit the number of domain levels.

Use unique names.
Use simple names.
Avoid lengthy domain names. Domain names can be up to 63
characters, including periods. The total length of an FQDN
cannot exceed 255 characters. Case-sensitive naming is not
supported.
Use standard DNS characters and Unicode characters.
Windows 2000 supports the following standard DNS
characters: A-Z, a-z, 0-9, and the hyphen (-), as defined in RFC
1035.
The DNS Service also supports the Unicode character set.
Zones
5
Multiple zones in a domain

namespace are used to
distribute administrative tasks
to different groups
A zone must encompass a
contiguous domain namespace
The name-to-IP address
mappings for a zone are stored
in the zone database file.
Each zone is anchored to a
specific domain, referred to as
the zone's root domain.
The zone database file does not
necessarily contain information
for all subdomains of the zone's
root domain, only those
subdomains within the zone.
Name Servers
6
Advantages of Multiple Name Servers
They Perform Zone Transfer
They Provide Redundancy
They improve access speed for remote locations
They reduce the load on the name server containing the primary
zone database file
Lesson 2: Understanding Name Resolution

7
Query Types
The DNS server returns the best answer that it can
Iterative Query
provide without help from other servers
The DNS server returns a complete answer to the

Recursive Query
query, not a pointer to another DNS server
Lookup Types
Forward Lookup Requires name-to-address resolution
Reverse Lookup Requires address-to-name resolution
Lesson 3: Configuring a DNS Client

8
Configuring DNS Server Addresses
Configuring DNS Query Settings
Configuring DNS Server Addresses

9
Configuring DNS Query Settings

10
Append Primary And Connection Specific DNS Suffixes
Append These DNS Suffixes (In Order)
Register This Connections Addresses In DNS
Use This Connections DNS Suffix In DNS Registration
Practice: Configuring a DNS Client

11
Configuring a DNS Client
Lesson 4: Understanding Active Directory

12
What Is Active Directory ?
Advantages Of Active Directory
What Is Active Directory ?

13
Directory Service
Centralized Management
Functionality
Organize
Organize Single
Single point
point of
of administration
administration
Manage
Manage Resources
Resources Full
Full user
user access
access toto directory
directory
Control
Control resources
resources by
by aa single
single logon
logon
Advantages Of Active Directory

14
Simplified Administration
Scalability
Open Standards Support
Domain Name System
Support for LDAP and HTTP

Structure and Replication
15
Logical Structure
Physical Structure
Replication within Site
Logical Structure
16
Objects
Organizational Units
Domains
Trees
Forests
Objects
17
Active
Active Directory
Directory
Objects
Objects
Printers
Attributes
Attributes
Printer1
Printer
Printer Name
Name
Printer2
Printer
Printer Location
Location
Printers
Printers
Printer3 Attribute
Attribute
Value
Value
Users
Attributes
Attributes
First
First Name
Name Don Hall
Last
Last Name
Name Suzan Fine
Users
Users Logon
Logon Name
Name
Objects Represent Network Resources

Attributes Store Information About an Object
Organizational Units
18
Network
Network Administrative
Administrative Model
Model Organizational
Organizational Structure
Structure
Sales Vancouver
Users Sales
Computers Repair
Use OUs to Group Objects into a Logical Hierarchy That Best

Suits the Needs of Your Organization
Delegate Administrative Control over the Objects Within an OU
by Assigning Specific Permissions to Users and Groups
Domains
19
A Domain Is a Security Boundary

A domain administrator can administer only within the
domain, unless explicitly granted administration rights
in other domains
A Domain Is a Unit of Replication
Domain controllers in a domain participate in replication
and contain a complete copy of the directory
information for their domain
r1 Replication
Replication r1
Us e Us e
r2 r2
Us e Us e
Windows
Windows2000
2000
Domain
Domain
Trees and Forests

20
(root)
Two-Way Transitive
Two-Way Transitive Trust
Trust
msn.cm
msn.cm
Forest
Tree
microsoft.com
microsoft.com uk.msn.com
uk.msn.com us.msn.com
us.msn.com
Tree Two-Way Transitive

Two-Way Transitive Trusts
Trusts
uk.microsoft.com
uk.microsoft.com us.microsoft.com
us.microsoft.com sales.uk.msn.com
sales.uk.msn.com
Physical Structure
21
Domain Controllers
Sites
Domain Controllers
22
Domain Controllers:
Participate in Active Directory replication
Perform single master operations roles in a domain
r1 Replication r1
Us e Replication Us e
r2 r2
Us e Us e
Domain Domain
Controller Controller
Domain
Domain
= A Writeable Copy of the Active Directory Database
Sites
23
Seattle
New York
Chicago
Los Angeles
IP subnet
Site
Sites: IP subnet
Optimize replication traffic

Enable users to log on to a domain controller by
using a reliable, high-speed connection
Replication within Site

24

Concepts
25
Schema
Global Catalog
Naming Conventions
Schema
26
Objects
Objects Active Directory Schema Is:
Class
Class Examples
Examples Dynamically Available
Dynamically Updateable
Protected by DACLs
Attribute
Attribute
Examples
Examples
Computers
Computers
Attributes
Attributes of
of Users
Users List
List of
of Attributes
Attributes
Might
Might Contain:
Contain:
accountExpires
accountExpires accountExpires
accountExpires
department
department department
department
Users
Users distinguishedName
distinguishedName distinguishedName
distinguishedName
middleName
middleName directReports
directReports
dNSHostName
dNSHostName
operatingSystem
operatingSystem
repsFrom
repsFrom
repsTo
repsTo
Printers
Printers middleName
middleName

Global Catalog
27
Subset
Subset of
of the
the
Attributes
Attributes of
of All
All Domain
Objects
Objects
Domain
Domain Domain
Domain Domain
Global
Global Catalog
Catalog
Queries
Queries
Group
Group membership
membership
when
when user
user logs
logs on
on
Global Catalog Server
Naming Conventions
28
LDAP Provides a Way to Communicate with Active

Directory by Specifying Unique Naming Paths for Each
Object in the Directory
LDAP Naming Paths Include:

Distinguished names
CN=Suzan Fine,OU=Sales,DC=contoso,DC=msft
Suzan Fine
Relative distinguished names
29
Design & Published by:

CMS Institute, Design & Development Centre, CMS House, Plot No. 91, Street No.7,
MIDC, Marol, Andheri (E), Mumbai 400093, Tel: 91-22-28216511, 28329198
Email: courseware.inst@cmail.cms.co.in
www.cmsinstitute.co.in

05 Using The DNS Service and Active Directory Services

Diunggah oleh

Informasi Dokumen

Judul Asli

Hak Cipta

Format Tersedia

Bagikan dokumen Ini

Bagikan atau Tanam Dokumen

Opsi Berbagi

Apakah menurut Anda dokumen ini bermanfaat?

Apakah konten ini tidak pantas?

Hak Cipta:

Format Tersedia

05 Using The DNS Service and Active Directory Services

Diunggah oleh

Hak Cipta:

Format Tersedia

Revision no.

Using the DNS Service and

Lesson 1: Understanding DNS

Domain Name Space

Domain Naming Guidelines

Domain Name Space

Domain Naming Guidelines

Limit the number of domain levels.

Multiple zones in a domain

Advantages of Multiple Name Servers

They Perform Zone Transfer

They Provide Redundancy

They improve access speed for remote locations

zone database file

Lesson 2: Understanding Name Resolution

The DNS server returns a complete answer to the

Forward Lookup Requires name-to-address resolution

Reverse Lookup Requires address-to-name resolution

Lesson 3: Configuring a DNS Client

Configuring DNS Server Addresses

Configuring DNS Query Settings

Configuring DNS Server Addresses

Configuring DNS Query Settings

Append Primary And Connection Specific DNS Suffixes

Append These DNS Suffixes (In Order)

Register This Connections Addresses In DNS

Use This Connections DNS Suffix In DNS Registration

Practice: Configuring a DNS Client

Configuring a DNS Client

Lesson 4: Understanding Active Directory

What Is Active Directory ?

Advantages Of Active Directory

What Is Active Directory ?

Advantages Of Active Directory

Open Standards Support

Domain Name System

Support for LDAP and HTTP

Lesson 5: Understanding Active Directory

Replication within Site

Objects Represent Network Resources

Use OUs to Group Objects into a Logical Hierarchy That Best

A Domain Is a Security Boundary

Trees and Forests

Tree Two-Way Transitive

= A Writeable Copy of the Active Directory Database

Optimize replication traffic

Replication within Site

Lesson 6: Understanding Active Directory

LDAP Provides a Way to Communicate with Active

LDAP Naming Paths Include:

Relative distinguished names

Design & Published by:

Anda mungkin juga menyukai