Major Concepts Ã¯Â¿Â½ PAGE Ã¯Â¿Â½1Ã¯Â¿Â½
Running head: MAJOR CONCEPTS
University of PhoenixÃ¯Â¿Â½
This paper will define and explain the major concepts of Domains, Forests, and Organizational Units. This paper will also address how each is used when developing an Active Directory schema for any company.
A domain consists of a group of computers and resources that share a mutual security database, such as Active Directory. The Active Directory is an information storage location which uses a systematic scheme, referred to as a "namespace," to organize the information stored within it. A common example is the telephone book. The phone book uses a "namespace" because all names are arranged in alphabetical order using the last name and first name of the phone user (Simmons, 2000). Computers within a domain must also share a mutual namespace. A Microsoft requirement is that Active Directory and DNS namespaces must be the same (Techfaq, 2008).
A domain can also be thought of as a security boundary since the ability to create and manage related resources within a domain and then implement administrative control and apply security is available. The ability to define security policies such as an account lockout policy and a password policy is completed on a domain basis. Therefore, Administrative rights granted in one domain are only valid in that specific domain. All network objects exist in a domain and each domain only stores information on the specific objects that it contains. A domain is effectively the central logical structure in Active Directory. In addition to domains, there are other logical components in Active Directory such as forests and organizational units (OUs) (Techfaq, 2008).
A forest is the grouping of one or more domain trees. Trees in a forest have the naming structures of their...