Active Directory Overview
Active Directory is a directory service that provides centralized management of resources such as users, computers, and applications in a Windows-based environment. It is used by organizations to manage their network resources and security policies.
Domain
A domain is a logical grouping of resources in Active Directory. It is a collection of computers, users, and groups that share a common security and administrative boundary. A domain has a unique name and is managed by a domain controller.
Forest
A forest is a collection of one or more domains that share a common schema, configuration, and global catalog. It is used to provide a hierarchical structure for the domains in an organization.
Domain Controller
A domain controller is a server that manages and authenticates user accounts and computer accounts in a domain. It is responsible for maintaining the Active Directory database, handling authentication requests, and replicating data to other domain controllers in the same domain.
Active Directory Users and Computers
Active Directory Users and Computers is a management console that allows administrators to manage user accounts, computer accounts, groups, and other resources in Active Directory.
Group Policy
Group Policy is a feature of Active Directory that allows administrators to apply configuration settings to users and computers in a domain. It can be used to enforce security policies, software deployment, and other settings.
Lightweight Directory Access Protocol (LDAP)
LDAP is a protocol used to access and manage directory information in Active Directory. It provides a standard method for applications to query and modify directory data.
Organizational Units (OU)
An Organizational Unit (OU) is a container object in Active Directory that can be used to organize and manage resources such as users, computers, and groups. It can be used to delegate administrative control and apply Group Policy settings.
Security Groups
Security groups are used to manage access control in Active Directory. They can be used to grant or deny access to resources such as files, folders, and printers.
Global Catalog
The Global Catalog is a distributed data repository in Active Directory that contains information about all objects in the forest. It is used to provide quick and efficient searches across multiple domains in the forest.
Trust Relationships
Trust relationships allow users in one domain to access resources in another domain. They can be used to provide access to resources in a partner organization or to simplify management of resources in a large organization.
Domain Name System (DNS)
DNS is a protocol used to map domain names to IP addresses. Active Directory uses DNS to locate domain controllers and other resources in a domain.
PowerShell Commands
PowerShell is a command-line tool that can be used to manage Active Directory. Here are some common PowerShell commands:
Get-ADUser: retrieves information about a user account
Get-ADComputer: retrieves information about a computer account
Get-ADGroup: retrieves information about a group
New-ADUser: creates a new user account
New-ADComputer: creates a new computer account
New-ADGroup: creates a new group
Remove-ADUser: removes a user account
Remove-ADComputer: removes a computer account
Remove-ADGroup: removes a group
Set-ADUser: modifies a user account
Set-ADComputer: modifies a computer account
Set-ADGroup: modifies a group
This Active Directory cheat sheet provides a brief overview of some of the key concepts and features of Active Directory. It is not exhaustive, but it should give you a good starting point for learning more about this powerful tool.