halFILE 3.0halFILE 3.0

Active Active Directory Directory

IntegrationIntegration

halFILE 3.0halFILE 3.0

AD – What is it?AD – What is it?

Centralized organization of network objects and security – servers, computers, printers, etc.

Standards based access (LDAP or WinNT) Query and index mechanism for

authenticated clients and applications Replication to all domain controllers

halFILE 3.0halFILE 3.0

AD – Which mode?AD – Which mode? Windows 2000 mixed (default)

• Support BDC and NT 4.x domains Windows 2000 native

• Allows 2000 and 2003 servers• Increased security• Universal security groups, group nesting, and

SID history Windows Server 2003

• Increased security and encrypted objects• Virtual domain controllers• Only allows 2003 servers

halFILE 3.0halFILE 3.0

Best PracticesBest Practices At least 2 domain controllers At least 2 local DNS servers

• Oct 2003 - Active directory will not support ISP DNS servers except via gateway or forwards

• Reverse lookup zone improves halFILE speed Use 2003 DHCP rather than router

• Supports MAC address reservations• Future Microsoft features

Add AD info to your backup (System State)

halFILE 3.0halFILE 3.0

AD – Group PolicyAD – Group Policy Get the MMC download from

Microsoft Centralized changes to user

policy Public workstation lockdown Terminal Server lockdown Automatic software installation

halFILE 3.0halFILE 3.0

AD – halFILE IntegrationAD – halFILE Integration

Adds user group functionality•Users•Document level security•Custom search

Multiple group membership•Least restrictive policy

Demonstration