Home‎ > ‎CIS 195‎ > ‎

Lesson 08: Installing Domain Controllers

Presentation slides are here

Objectives 
  • Add or remove a domain controller from a domain
  • Upgrade a domain controller
  • Install Active Directory Domain Services (AD DS) on a Server Core installation
  • Install a domain controller from Install from Media (IFM)
  • Resolve DNS SRV record registration issues
  • Configure a global catalog server

Vocabulary
Active Directory Domain Services (AD DS): A directory service that Microsoft first introduced in Windows 2000 Server and has upgraded in each successive server operating system release, including Windows Server 2012.

attributes: In Active Directory Domain Services, the individual properties that combine to form an object.

authentication: The process by which Windows Server 2012 verifies that the user matches the user account employed to gain access.

authorization: The process of determining whether an identified user or process is permitted access to a resource and the user’s appropriate level of access.

container object: In Active Directory Domain Services, an object, such as a domain or organizational unit, that has leaf objects or other container objects as its subordinates.

Directory Access Protocol (DAP): A communications protocol specified in the X.500 standard. It is also the progenitor of the Lightweight Directory Access Protocol (LDAP).

directory schema: An Active Directory Domain Services component that specifies the attributes each type of object can possess, the type of data that can be stored in each attribute, and the object’s place in the directory tree.

domain: A set of network resources available for a group of users who can authenticate to the network to gain access to those resources.

domain controller: A Windows server with Active Directory Domain Services directory service installed. Each workstation computer joins the domain and is represented by a computer object. Administrators create user objects that represent human users. A domain differs from a workgroup because users log on to the domain once, rather than to each individual computer. 

domain tree: In Active Directory Domain Services, an architectural element that consists of one or more domains that are part of the same contiguous namespace.

forest: In Active Directory Domain Services, an architectural element that consists of one or more domain trees.

forest root domain: In Active Directory Domain Services, the first domain created in a forest.

global catalog: A list of all the objects in an Active Directory Domain Services forest and a subset of each object’s attributes, used by domain controllers to locate and access the resources of other domains in the same forest.

leaf object: In Active Directory Domain Services, an object, such as a user or computer, which is incapable of containing any other object.

Lightweight Directory Access Protocol (LDAP): The standard communications protocol for directory service products, including Active Directory Domain Services. 

multiple-master replication: A technique in which duplicate copies of a file are updated on a regular basis, no matter which copy changes. For example, if a file is duplicated on four different servers, a user can access any of the four copies and modify the file as needed. The replication engine uses the changes made to the modified copy to update the other three copies. Compare to single master replication. 

organizational unit (OU): A container object that functions in a subordinate capacity to a domain, but without the complete separation of security policies. 

Read-Only Domain Controller (RODC): In Active Directory Domain Services, a domain controller that supports only incoming replication traffic. 

single-master replication: A technique in which duplicate copies of a file are updated on a regular basis from one master copy. For example, if a file is duplicated on four different servers, users can modify one copy and the replication engine propagates the changes to the other three copies. Compare with multiple-master replication.

site: A collection of subnets that have good connectivity between them.
Comments