Académique Documents
Professionnel Documents
Culture Documents
• AD DS Installation Process
RODCs provide:
• Additional security for branch office with
limited physical security
RODCs:
• Cannot hold operation master roles or be configured as
replication bridgehead servers
RODCs provide:
• Unidirectional replication
• Credential caching
• Read-only DNS
• No credentials cached
Domain
Domain
Domain Domain
Domain Domain
Domain
Global Catalog
Query
Result
Global Catalog
Server
Modifying the Global Catalog
Common
Common Changed
Changed
Attributes
Attributes Attributes
Attributes
firstName
firstName department
lastName
department
lastName firstName
firstName
email
email address
address lastName
lastName
accountExpires
accountExpires email
email address
address
distinguishedName
distinguishedName accountExpires
accountExpires
distinguishedName
distinguishedName
Create
additional
attributes
Global Catalog
Server
Logon information
6425A-NYC-DC1,
6425A-NYC-
Virtual machine
SVR1, 6425A-
NYC-DC2
User name Administrator
Password Pa$$w0rd
Estimated time: 75 minutes
Lab Review
• Why did Axel’s account not have permission to create any
objects in AD DS?
• What were the two connection objects that were created
from NYC-DC1 to TOR-DC1? Why was no connection
object created from TOR-DC1 to NYC-DC1?
• Could you have assigned the Domain Naming Master role
to TOR-DC1?
• What would happen when you add a new attribute to the
global catalog?
Module Review and Takeaways
• Review questions
• Key points