Lesson 05 Glossary for Administer Active Directory Flashcards
The Administrative Center consists of several administrative tasks that you perform frequently, such as resetting a user password or searching through Active Directory.
Active Directory Administrative Center
An Active Directory object that is a security principal and that identifies a computer that is part of a domain.
Computer object
Active Directory object that defines the contact information for a single entity such as an individual or company.
Usually used in organizational units (OUs) to specify the main administrative contact and other individuals within the organization.
Contact objects are not security principals like User objects.
They are primarily used for reference or automatic mailing lists.
Contact object
The process by which a user who has higher-level security permissions grants certain permissions over Active Directory objects to users who are lower-level security authorities.
Delegation is often used to distribute administrative responsibilities in a network environment.
Delegation
A Windows Server 2003, Windows Server 2008, and Windows Server 2012 tool used for delegating permissions over Active Directory objects.
(See also delegation.)
Delegation of Control Wizard
Active Directory object used to give permissions to other security principals that do not exist within an Active Directory domain.
Generally, foreign security principals are automatically created by the services of the Active Directory.
Foreign security principal
An Active Directory security group that contains accounts from only its own domain.
Global group
Logical collection of users that is used primarily for assigning security permissions to resources.
Group object
An Active Directory object that defines attributes of users in Lightweight Directory Access Protocol (LDAP) and X.500 directories.
InetOrgPerson object
Units stored within Active Directory.
Objects
Used to logically organize the Active Directory objects (such as similar accounts or machines) within a domain.
An OU is the smallest component within a domain to which administrative permissions and group policies can be assigned.
OUs serve as containers within which other Active
Directory objects can be created, but they do not form part of the DNS namespace.
Organizational unit (OU)
Active Directory object that can contain users or other groups and are used for the management and assignment of permissions.
Users are placed into security groups, and then permissions are granted to these groups.
Security groups are considered to be security principals.
See also security principal.
Security group
A unique number given to Active Directory objects (such as users, computers, and groups) to identify those objects within Active Directory.
Security identifier (SID)
Active Directory object that is a security principal and that identifies individuals that can log on to a domain.
User accounts contain information about individuals as well as password and other permission information.
User object
