Windows Server 2008

1. WINDOWS SERVER 2008 2. WINDOWS 2008 Editions 3. WINDOWS 2008 Server Core 4. APPROX. COST OF WINDOWS SERVER 2008 5. Upgrade / Migrate 6. Upgrade from previous OS 7. WINDOWS SERVER 2008 INSTALLATION 8. Windows Server 2008 Activation 9. Activation Method 10. RAID 11. BACKUP and RECOVERY 12. Wbadmin 13. BACKUP Utility 14. Windows Recovery Environment 15. Server Roles for WINDOWS SERVER 2008 16. IP-ADDRESSING and IPV4 17. IPV6 18. Remote Desktop Connection 19. Steps for Remote Desktop Pc from Client PC 20. Remote Desktops 21. MANAGING SERVER CORE 22. TERMINAL SERVICES (TS) 23. TERMINAL SERVICES MANAGER 24. MANGAING FILE AND PRINT SERVERS 25. Share Folder 26. Attrib (Attribute) 27. Windows Registry 28. Disk Quotas 29. Disaster Recovery Tools 30. MMC 31. Remote Assistance 32. Signed & Unsigned Driver 33. Hardware Profile 34. CHKDSK.EXE(Check Disk) 35. Disk Defragmenter (DFRG.MSC) 36. ACTIVE DIRECTORY REVIEW 37. Introduction to AD 38. TRUST 39. FSMO 40. GC (GLOBAL CATALOG) Server 41. Site 42. AD replication 43. Backup of Active Directory (DC) 44. Understanding USER, GROUP & COMPUTER 45. Create Local User & Multiple Users 46. GROUP SCOPE 47. Public and Private key encryption 48. Trust concept of CA working 49. ETHERNET CARDS 50. Availability and Security 51. General Server Security Issues 52. OSI MODEL 53. Data Encapsulation 54. TCP/IP or DoD Model 55. Protocol Working at Host to Host (Transport) layer 56. NETWORK MONITOR 57. Internet Information Services 58. Monitoring Tools 59. DNS [Domain Name System] 60. DNS ZONE 61. Remote Access Authentication Process 62. Remote Access Interview Question & Answer part 1 Tutorials Interview Question & Answer part 2 Tutorials Interview Question & Answer part 3 Tutorials Interview Question & Answer part 4 Tutorials Interview Question & Answer part 5 Tutorials Interview Question & Answer part 6 Tutorials Interview Question & Answer part 7 Tutorials
Pr.Pg Next Pg

Introduction to AD [Active Directory] tutorials

  • LAN provided services to users and computer throughout the small network of computers from 5 to 50 PCs. Later LAN begin to grow into WAN, no of computer rose to thousands of computers. This made administration rather difficult as one had to manually synchronize the password and other security on all servers.

  • In 1993 university of Missigen created LDAP (Lightweight Directory Access Protocol) standard. Active Directory is based on the LDAP

  • AD is Directory Services for Windows 2000/2003 & is used to Authenticate and Authorize access to resources

  • Directory service provide way to Find, Secure & Access information about organization resources such as User, Group, Computer, Printer and other detail.

  • It stores it as database that holds above information

  • It allows Centralize administration & even Decentralize management if required.

  • It offers SSO (Single Sign On) capabilities so user can access computer throughout the enterprise without creating new user a/c on each computer

  • AD uses DNS for locating and naming objects. DNS names are easy to understand and match the naming system on the internet rather then remembering IP address.

Difference between WORKGROUP & DOMAIN




: :


: : :


Here SAMIR cant start 2nd or 3rd PC, same way SUS cant start 1st or 3rd Pcetc

To use another Pc, his/her user name has to be created on ALL Pcs

All use a/c are stored on Domain controller here any user can logon to any Pc that are connected within domain

Username & Password is Authenticated By SAM (Security Accounts Manager)

Username & Password is Authenticated by AD (Active Directory) which is stored on DC (Domain Controller). When we install Domain Controller, SAM is migrated to AD

No Centralization management,

Easy to manage

Centralized Management

Complex, need Domain Administrator


Structure & Relationship of Active Directory







Pre-requisite for Domain Controller

  • DNS must be available on the network before you can install a Domain controller in a new domain. AD uses DNS for locating and naming objects.

  • NTFS - (HDD must have NTFS File System)

  • NIC (LAN card with IP Address)


  • A forest can either consist of a single tree or number of trees that do not share a contiguous namespace. In this arrangement, every tree root domain has a transitive trust relationship with the root domain.

  • Groups of domain tree are grouped together to share resources.

  • Forest container can contain TREES, DOMAINS & OUs.

  • The Forest root domain is the first Domain created in Active Directory forest.

  • The first domain controller installed in the forest automatically becomes the global catalog server for that domain.


  • A tree is a hierarchical arrangement of Windows Server 2003 domains that share a contiguous namespace. In such an arrangement the root domain name is attached as a suffix to the new domain names.

  • We can say Tree is a group of domains based on same namespace.

  • Tree container can contain Domains and OUs.

  • The Tree root domain is the highest Active Directory domain in the tree. The root domain contains the configuration and schema data for the tree.

  • The new domain is called a child domain of an existing parent domain and has a two-way, transitive trust relationship with its parent domain.

  • Thus, a domain tree structure is formed by adding child domains to the root domain.

  • All domains in a tree

  • Are connected with two-way transitive trusts

  • Share the same schema

  • Have common global catalogs


  • In Windows Server 2003, a Domain is a logical grouping of network elements, including computers, users, printers & other components that make up the network.

  • Domain container object can contain Child Domain, OUs container and other leaf objects such as Users, Group, Computers, Printer etc.

  • Between Parent Domain and Child Domain there exist two way transitive trust.

  • Domain that uses Active Directory are referred as Active Directory Domains or Domain Controller.

  • In an Active Directory domain, any member server can be promoted to a DC - Domain controller by installing AD using DCPROMO command.

  • Similarly you can demote DC (Domain Controller) by removing AD on the server by issuing DCPROMO command.

  • Although you can deploy Active Directory domain with only one DC - Domain Controller, one may deploy multiple DC called ADC (Additional Domain Controller) to ensure availability of directory services and logon authentication in case if one or more DC fail.

  • It is graphically represented by Triangle

OU (Organization Unit)

  • It can be created based on location, department or business purpose.

  • OU is used for administrative control

  • OU is the smallest container on which one can assign GPOs Group Policies Object.

  • You can not assign Share Permission or Security rights to OU.

  • OUs container can contain child OUs and other leaf objects such as Users, Groups, Computers, Printers etc.

Other Servers

  • Stand-Alone Servers In Windows Server 2003, a stand-alone server is a Server computer that does not have Active Directory installed on it and does not belong to a domain. It might serve some other server role like DHCP, PRINTER, DNS, APPLICATION etc.

  • Member Server In Windows Server 2003, a member server is a Server computer that belongs to a domain but does not have Active Directory installed on it. Once Active Directory is installed on a member server, it ceases to be a member server and becomes a DC Domain Controller.

Operating System that support Active Directory


Client Operating System

Active Directory Support

Windows NT Workstation

Can join the network as computer account as a part of a windows NT domain

Windows 95

Windows 98

Windows ME

Can be Active Directory client

Windows XP Home

Can NOT join Active Directory Domain

Windows 2000 Professional

Windows XP Professional

Windows Vista

Can be Active Directory Client

It Support Kerberos for improved security and other features.


Pr.Pg border                                              Next Pg