Active Directory Domain Services Flashcards
1
Q
AD DS logical components
A
- Domain
- Tree
- Forest
- OU
- Partition
- Schema
- Container
2
Q
AD DS physical components
A
- Data store
- Global catalog
- DC
- RODC
- Site
- Subnet
3
Q
Trusts: Parent and child
A
- Created when new domain is added to an existing tree.
- Transitive, two-way
4
Q
Trusts: Tree-root
A
- Created when a new tree is added to the forest
- Transitive, two-way
5
Q
Trusts: Forest
A
- Manually created between forests
- Transitive, one-way or two-way
6
Q
Trusts: Shortcut trust
A
- Manually created to reduce authentication time between domains
- Non transitive, one-way or two-way
7
Q
Trusts: external
A
- Manually created to allow access to resources from a domain in another forest or NT 4.0 domain
- Non transitive, One-way or two-way
8
Q
Trusts: realm
A
- Manually created between AD DS and another service running kerberos 5
- Transitive or non transitive, one-way or two-way
9
Q
Security principal
A
Any entity that can be authenticated by the operating system e.g user account, computer account, or a thread or process that runs in the security context of a user or computer account
10
Q
SID
A
- Security identifier
- Unique identifier for a security entity issued by an authority such as a domain controller
11
Q
AD components: Data Store
A
- Holds the AD database
- Two files on each DC
12
Q
AD DS database file path
A
C:\Windows\NTDS\NTDS.DIT
13
Q
AD DS transaction log file path
A
C:\Windows\NTDS\EDB.log
14
Q
NTDS.DIT partitions
A
- Domain partition
- Configuration partition
- Schema partition
- Application partitions
15
Q
NTDS.DIT partitions: domain partition
A
Stores object information for the domain
