Académique Documents
Professionnel Documents
Culture Documents
Agenda
Introduction to Designing a Directory Services Infrastructure DNS and Active Directory Designing a DNS Naming Strategy for Active Directory Designing an Active Directory Domain
Designing the Initial Active Directory Domain Planning for Security Groups Planning for OUs
Planning Guidelines
Remember Business Needs Maintain a Clear Vision Make Solid Tradeoff Decisions Create a Simple Design Test the Design
ADVANTAGE PRO Chennais Premier Networking Training Centre
Designing a Naming Strategy Designing an Active Directory Domain Designing Multiple Domains Designing a Site Topology Designing for Delegation of Administrative Authority Designing for Group Policy Designing Schema Modifications
Active Directory Uses DNS as Naming Service Internet Presence a Determining Factor in Selecting Domain Names23
Domain Name System (DNS)
nwtraders.msft
Create OUs to Support Delegation and Group Policy Create OU Structure to Reflect Administrative Model Carefully Name the First Domain
nwtraders.msft
First Domain
OU OU
OU
OU
OU
OU
Root
Relieves Burden of Centralized Management Separates administrative Authority from Rest of Network
nwtraders.msft
Domain
Schema Defines Objects and Attributes in Active Directory Changing the Schema Can Affect the Entire Network Create a Schema Modification Policy to Manage Changes
Schema
Agenda
.
com.
microsoft.com
sales
.
com.
host record and Active Directory object represent the same physical computer allows computers to locate domain controllers within Active Directory
Active Directory
training.microsoft.com
DNS
Builtin Computers
computer1
Computer1 Computer2
Support for SRV records (mandatory) Support for the dynamic update protocol (recommended) Support for incremental zone transfers (recommended)
Agenda
Main Business Needs that Impact a Naming Strategy: Intended Scope of Active Directory Internet Presence
Active
contoso.msft
Determining the Scope of Active Directory Designing the Naming Hierarchy Choosing Active Directory Domain Names
contoso.msft
Child
namerica.contoso.msft
Child
europe.contoso.msft
Making Initial Naming Decisions Using a Delegated Sub domain Name for the Internal Network Using a Single DNS Name for Public and Private Networks Using a Different DNS Name for Public and Private Networks Design Guidelines
ADVANTAGE PRO Chennais Premier Networking Training Centre
Registering the DNS Root Name Designing with an Existing DNS Implementation Determining Strategies Internal and External Naming
Create a New DNS Zone in New Domain Configure Authoritative DNS Server in Existing DNS Domain to Delegate to New Domain Create Active Directory Forest Root in New Domain Zone 2 Zone 1
contoso.msft
Firewall
ad.contoso.msft
Use Existing DNS Strategy as the Root of Active Directory Create a Subdomain of the Existing DNS Strategy as the Root of Active Directory Keep the Existing BIND DNS Strategy, and Register Another Domain Name for the Root of Active Directory
Design Guidelines
Delegated Subdomain for the Internal Network Single DNS Name for Public and Private Networks Different DNS Name for Public and Private Networks