Save
Upgrade to remove ads
Busy. Please wait.
Log in with Clever
or
show password
Forgot Password?
Don't have an account?  Sign up 
Sign up using Clever
or
Username is available taken
show password


Make sure to remember your password. If you forget it there is no way for StudyStack to send you a reset link. You would need to create a new account. Your email address is only used to allow you to reset your password. See our Privacy Policy and Terms of Service.

Already a StudyStack user? Log In

Reset Password
Enter the associated with your account, and we'll email you a link to reset your password.
focusNode
Didn't know it?
click below
 
Knew it?
click below
Don't Know
Remaining cards (0)
Know
0:00
edit
Embed Code - If you would like this activity on your web page, copy the script below and paste it into your web page.

  Normal Size     Small Size show me how

Ch:4

Microsoft Windows server

QuestionAnswer
Computer Account An account created in the AD database for a computer. It contains an encryption key used to encrypt communication with domain controllers during authentication.
Domain Admins group (effect of domain join) When a computer joins a domain, this group is added to the computer's local 'Administrators' group. This allows Domain Admins to log in and administer any system in the domain.
Domain Users group (effect of domain join) Gets added to the local 'Users' group, allowing any domain user account to log into the computer.
Domain Guests group (effect of domain join) Gets added to the local 'Guests' group, allowing members to access the computer with the rights of the local Guests group.
AD Objects Represent domain users, groups, and computer accounts stored as objects within the AD database.
AD database Can contain an unlimited number of objects and is accessed quickly using the Lightweight Directory Access Protocol (LDAP).
Group Policy (features of AD) An AD feature to automatically deploy software, configure security, and deploy application settings. It reduces administration time.
Active Directory schema Defines all available object types (classes) and their associated properties (attributes).
Leaf objects (think end of a tree branch) Objects that do not contain other objects. Examples include user, group, and computer accounts, and shared printers.
what are Container objects Objects in the AD database that can contain other objects. The three main types are Domains, OUs, and Sites.
Container object organizational Units (OUs) Similar to a folder, it contains leaf objects or other OUs (child OUs). Used to represent the structure of a specific business unit.
Container object Sites (Container) Represent the physical sites in your organization.
Active Directory forest A container holding multiple domains within the same organization.
Active Directory tree A structure of parent and child domains.
Using additional domain controllers Add them to the forest root domain Configured to host an Active Directory database for another domain within the same forest
Distinguished Name (DN) A unique name given to each leaf object that identifies its Common Name (CN) and its location within AD. (e.g., CN=J.Eckert,OU=R&D,DC=domain1,DC=com)
Trust relationship (trust) look at CH:4 slide 13 for example Allows users to access resources in other domains, provided they have permission in the resource's ACL.
Transitive property look at CH:4 slide 13 for example Allows a trust relationship to apply to other trust relationships, minimizing the number of trusts needed.
The First parent domain within each tree does? Trusts the first parent domain within each other tree in the same forest with two-way transitive trust relationships (notice the double-headed arrows)
Each parent domain within a tree does? Trusts their child domains using two-way transitive trust relationships
Internal trusts know as and allows what? Known as “Default trust relationships” Allows users to access resources in any other domain within the forest to which they have been granted permission.
Local group accounts Simplify the assignment of rights and permissions to multiple local user accounts on a system
Group account objects Simplify the assignment of rights and permissions to user account objects that are members of the group Minimizes the number of entries within the ACL
Two main types of group accounts in AD one type = Distribution groups A type of AD group used with an email system, such as Microsoft Exchange Server.
Two main types of group accounts in AD Second type = Security groups The default group type in AD. They can be assigned rights and permissions that apply to their members.
Global scopes Used to organize rights and permissions assignments across multiple domains.
Domain local scope Group members can be objects from any domain in the forest, but the group is used within a single domain.
Universal scope Group members can be objects from any and all domains in the forest.
AD database partitions Sections of the AD database, including the Schema, Configuration, and Domain partitions.
Single forest (slide 18 WIP) Can contain an unlimited number of domains Each domain can contain an unlimited number of objects
Single forest Global catalog (slide 18 ) Contains a list of all object names in the forest. Stored on at least one domain controller (Global Catalog Server). Used to quickly locate objects in remote domains.
Global Catalog (function) (slide 19) Required to complete the authentication process and log in to the domain.
User Principle Name (UPN) A unique name in the global catalog (e.g., user@domain.com). Users can use it to log in from any computer in the forest.
Container objects Domains (Container) Represent an AD domain (e.g., domain1.com). Typically represents a business unit and contains OUs and leaf objects
Forest root domain The first domain created in a forest.
Site object (replication) or (site) Represents a physical location and is associated with one or more IP subnets to control AD replication bandwidth.
AD replication protocols IP and Simple Mail Transfer Protocol (SMTP).
Read-Only Domain Controller (RODC) A domain controller that contains a read-only copy of the Active Directory database. Used in locations where physical security is a concern.
RODC (password replication) Can be configured to only replicate password attributes for users within its specific branch office.
Protect container from accidental deletion An option that is checked by default when creating a new OU to prevent it from being easily deleted.
Universal Group Membership Caching (UGMC) Allows universal groups to be cached on domain controllers within a site. Enables fast logins, especially if a Global Catalog server is not local.
Created by: andytheroo13
 

 



Voices

Use these flashcards to help memorize information. Look at the large card and try to recall what is on the other side. Then click the card to flip it. If you knew the answer, click the green Know box. Otherwise, click the red Don't know box.

When you've placed seven or more cards in the Don't know box, click "retry" to try those cards again.

If you've accidentally put the card in the wrong box, just click on the card to take it out of the box.

You can also use your keyboard to move the cards as follows:

If you are logged in to your account, this website will remember which cards you know and don't know so that they are in the same box the next time you log in.

When you need a break, try one of the other activities listed below the flashcards like Matching, Snowman, or Hungry Bug. Although it may feel like you're playing a game, your brain is still making more connections with the information to help you out.

To see how well you know the information, try the Quiz or Test activity.

Pass complete!
"Know" box contains:
Time elapsed:
Retries:
restart all cards