Home‎ > ‎CIS 195‎ > ‎

Lesson 09: Active Directory Users and Computers

Presentation slides are here.

  • Automate the creation of Active Directory accounts
  • Create, copy, configure, and delete users and computers
  • Configure templates  
  • Perform bulk Active Directory operations
  • Configure user rights 
  • Offline domain join
  • Manage inactive and disabled accounts


Comma-Separated Value (CSV) A text-based file format in which the data fields of a single record are recorded on a single line, separated by commas

Comma-Separated Value Directory Exchange (CSVDE): A command-line utility that can create new AD DS objects by importing information from a comma-separated value (.csv) file.

domain user: An account that can access AD DS or network-based resources, such as shared folders and printers.

Dsadd.exe: The standard command-line tool for creating AD DS leaf objects, which you can use with batch files to create AD DS objects in bulk.
header record: In a CSV file, the first line of the text file that uses proper attribute names. 

LDAP Data Interchange Format (LDIF): A data file format for user records that you can use with the LDIFDE.exe utility.
LDAP Data Interchange Format Directory Exchange (LDIFDE): A utility that can import AD DS information and use it to add, delete, or modify objects, in addition to modifying the schema, if necessary.

local user: An account that can access only resources on the local computer and that are stored in the local Security Account Manager (SAM) database on the computer where they reside.

SAM account name: The AD DS attribute containing the user’s login ID.

Security Account Manager (SAM): The database on a local Windows computer where account information is stored.