Upload
alexandrina-caldwell
View
219
Download
1
Embed Size (px)
Citation preview
halFILE 3.0halFILE 3.0
Active Active Directory Directory
IntegrationIntegration
halFILE 3.0halFILE 3.0
AD – What is it?AD – What is it?
Centralized organization of network objects and security – servers, computers, printers, etc.
Standards based access (LDAP or WinNT) Query and index mechanism for
authenticated clients and applications Replication to all domain controllers
halFILE 3.0halFILE 3.0
AD – Which mode?AD – Which mode? Windows 2000 mixed (default)
• Support BDC and NT 4.x domains Windows 2000 native
• Allows 2000 and 2003 servers• Increased security• Universal security groups, group nesting, and
SID history Windows Server 2003
• Increased security and encrypted objects• Virtual domain controllers• Only allows 2003 servers
halFILE 3.0halFILE 3.0
Best PracticesBest Practices At least 2 domain controllers At least 2 local DNS servers
• Oct 2003 - Active directory will not support ISP DNS servers except via gateway or forwards
• Reverse lookup zone improves halFILE speed Use 2003 DHCP rather than router
• Supports MAC address reservations• Future Microsoft features
Add AD info to your backup (System State)
halFILE 3.0halFILE 3.0
AD – Group PolicyAD – Group Policy Get the MMC download from
Microsoft Centralized changes to user
policy Public workstation lockdown Terminal Server lockdown Automatic software installation
halFILE 3.0halFILE 3.0
AD – halFILE IntegrationAD – halFILE Integration
Adds user group functionality•Users•Document level security•Custom search
Multiple group membership•Least restrictive policy
Demonstration