Sunday 12 October 2014

windows AD active directory notas

Active Directory, 4th Edition.pdf
página 13

documentos:

Clase completa sobre windows xp, incluye Active Directory en chapter 5 lesson  6 Understanding Active Directory Concepts
http://etutorials.org/Microsoft+Products/microsoft+windows+xp+professional+training+kit/Chapter+5+-+Using+the+DNS+Service+and+Active+Directory+Service/Lesson+6nbspUnderstanding+Active+Directory+Concepts/





Gestión de usuarios en ubuntu:

Sencillo en local, usuarios centralizados lo comenta al final pero sin enlaces
https://help.ubuntu.com/12.04/serverguide/user-management.html

Q&a sobre manejo centralizado de usuarios en linux
http://serverfault.com/questions/69103/how-to-do-central-home-directories-and-user-accounts-on-ubuntu

NIS - Network Information Service -- ojo esto es de 2003
http://www.yolinux.com/TUTORIALS/NIS.html



https://help.ubuntu.com/12.04/serverguide/network-authentication.html


What is Active Directory - Roggeweck
https://www.google.es/url?sa=t&rct=j&q=&esrc=s&source=web&cd=1&ved=0CCMQFjAA&url=http%3A%2F%2Fwww.roggeweck.net%2Fuploads%2Fmedia%2FActive_Directory_Handout.doc&ei=cx85VO63B5PhaJ6bgegB&usg=AFQjCNEc_X7P96GNSyBHEgA1Nmf8vTw2nw&sig2=kjRsKQelkaI53BCpVEUomg&bvm=bv.77161500,d.d2s&cad=rja



How to do central home directories and user accounts on Ubuntu?
http://serverfault.com/questions/69103/how-to-do-central-home-directories-and-user-accounts-on-ubuntu

https://help.ubuntu.com/12.04/serverguide/network-authentication.html




How SSL and TLS works -- divulgativo
http://www.techradar.com/news/software/how-ssl-and-tls-works-1047412


OpenLDAP Software 2.3 Administrator's Guide
http://www.openldap.org/doc/admin23/index.html

LDAP Linux HOWTO -- version antigua del anterior
http://www.tldp.org/HOWTO/LDAP-HOWTO/index.html

Tutoriales en LDAP - cuesta ententderlo
http://www.youtube.com/watch?v=-_0Uzi0lQtE&list=PL8B125D10F99838F7


How Active Directory Searches Work
http://technet.microsoft.com/en-us/library/cc755809(v=ws.10).aspx




What are the differences between LDAP and Active Directory?
http://stackoverflow.com/questions/663402/what-are-the-differences-between-ldap-and-active-directory



Duplicar un disco con acronis 2010 da el iso
http://www.youtube.com/watch?v=UJQVqbKRdtM&feature=youtu.be


The Machine SID Duplication Myth (and Why Sysprep Matters) -- windows SID
http://blogs.technet.com/b/markrussinovich/archive/2009/11/03/3291024.aspx




links
-----
https://help.ubuntu.com/12.04/serverguide/network-authentication.html
https://help.ubuntu.com/12.04/serverguide/openldap-server.html
https://help.ubuntu.com/12.04/serverguide/kerberos-ldap.html






Active_Directory_Handout.doc  NOTAS

http://www.roggeweck.net/uploads/media/Active_Directory_Handout.doc
es de 2002 pero es un resumen en 9 páginas en inglés.

Sites - define the boundaries of high-speed links on a network containing Active Directory Servers
Sites are based on IP subnets


PDCs and BDCs

En windows NT había:
PDC - Primary Domain Controller
BDC - Backup Domain Controller
Ahora en windows 2000 todos son DC -Domain Controler

DCPROMO.EXE - promocionar promote a non-domain controller to a DC

OU - Organizational units are containers into which you can place users, groups, computers, and other organizational units


Distiguished names and common names

* Distinguished names are the complete "path" through the hierarchical tree structure to a specific object
The following are the components that make up a distinguished name:
* OU - Organizational Unit. This attribute is used to divide a namespace based on organizational structure as previously discussed. An OU usually is associated with an Active Directory container or folder.
* DC - Domain Component. Domain components . A distinguished name that uses DC attributes will have one DC for every domain level below root. Another way of thinking of this would be that there would be a DC attribute for every item separated by a dot in the domain name.
* CN - Common Name. This attribute represents the object itself within the directory service.

Here is an example of a distinguished name:
CN=Jason Sprague,CN=Users,DC=mcmcse,DC=COM

Naming Convention Example
Friendly name/RFC 822 jsprague@mcmcse.com
LDAP URL LDAP://mcmcse.com/CN=jsprague,
OU=sales,O=MCMCSE,C=US
Universal Naming Convention(UNC) \\mcmcse.com\documents\webpages\index.shtml

Global Catalog - to search by name and atributes


GUID, When a new object is created in AD, it is assigned a unique number called a GUID (globally unique identifier). The GUID is useful because it stays the same for any given object even if the object is moved. The GUID is a 128-bit identifier.


REPLICATION - Active Directory uses multimaster replication, which is another way of stating that updates can occur on any Active Directory server.
Some exceptions exist or Flexible Single Master Operation:
* Schema Master
* Domain Naming Master
* RID Master (Relative Identifier Master)
* PDC emulator (Primary Domain Controller)
* Infrastructure Daemon


Security:
three types of *groups*:
•  Domain Local(similar to a local group)
•  Global
•  Universal groups

Each group can have one of two *functions*:

* security - Security groups are the ones we are familiar with
* distribution - will be used primarily with Exchange 2000 or any other Active Directory mail application

Group Policy
They apply to OU not to groups
There are five major categories:
•  Folder redirection: Store users' folders (my documents, my pictures) on the network.
•  Security: Similar to account policies under user manager in NT4 - includes settings for the local computer, the domain, and network security.
•  Administrative Templates - NT4 administrators will recognize this section as system policies - in a much more convenient and flexible configuration. Included are desktop, application, and system settings.
•  Software Installation - Completely new - enables an administrator to have software installed automatically at the client machine - or removed automatically.
•  Scripts - similar to logon scripts in NT4, but we can now specify a startup and a shutdown script for the computer as well as a logon and a logoff script for the user.


When you *deploy software*, you can choose to assign it or publish it

.fin de las notas.




La búsqueda en youtube

http://www.youtube.com/results?search_query=active+directory+tutorial+free

Geniales
http://www.youtube.com/watch?v=OTpbQkW3kj4&list=PLBBA04BF566F0E0D6

Workgroup
HomeGroup if all are windows 7

Punto de visión:  http://www.youtube.com/watch?v=2AQuWCHlLf8&list=PLBBA04BF566F0E0D6#t=16