Active Directory
Active Directory (AD) is a directory service developed by Microsoft for Windows Server operating systems. It is a pivotal component in Enterprise Identity Management, providing a structured way to manage permissions and access to network resources.
History and Development
Core Components
- Domain Services: The core of AD, which stores directory data and manages user interactions.
- Lightweight Directory Services (LDS): A flexible, lightweight version of AD DS for applications that require directory capabilities.
- Certificate Services: Manages the creation, validation, revocation, and renewal of certificates.
- Federation Services: Enables Single Sign-On (SSO) across organizational boundaries.
- Rights Management Services: Protects information through persistent usage policies.
Functionality
- Authentication: AD provides centralized authentication through Kerberos and NTLM protocols.
- Authorization: It manages access control through Access Control Lists (ACLs) and Group Policy.
- Directory Services: AD acts as a database for storing information about users, devices, applications, and other resources.
- Domain Management: Facilitates the creation and management of Domains, Trees, and Forests.
Security and Management
External Links
Related Topics