Active Directory

By: Rejin Paul
Jun 12,2018
{{ postlikes }}
{{ratedCustomerCount}} Post Rating

Directory is the warehousing format of all our files stored in any storage device . Its the best way to maintain and retrieve the required files quickly without any hassle . But there are many directory system depending upon the operating systems like windows , Linux etc and also purpose we are using it. In this directory we will be knowing what is active directory and what is special in it for making a universal directory system . Lets dive in and get to know about its specialty.


It is software based windows file system which is used to arrange , store information and provide access and permission based on those information in the network organization.It arrange all the network users , computers into logical or hierarchical manner.The information in the active directory are used used to authenticate / validate users , computers and resources which are part of the network.


It is the physical entities of a network which can described with the set of attributes like name, mobile no , location etc . Each object has a Globally Unique Identifier called as GUID which is 128 bit and Security Identifier (SID) to explain security principle objects . Objects can be in different physical locations.


It the logical grouping and administrative bounding of objects .There are no limits of object in a domain of active directory.To authenticate and modify the domain there is a controller called Domain Controller. All the domains in the domain tree share a contiguous namespace .

Eg : If a user has a access to a domain , he can logon from anywhere and any computer in that domain.


Active Directory Domain has 4 major components :


  • - A Hierarchical structure of containers and objects
  • - An Unique Domain Name
  • - A security mechanism to authenticate users in the domain
  • - Domain Policy



They are part of the organization.They have unique account ID and they can access the resources in that domain . All the user key are authorized before they are logged in .


It is the individual computers or servers in the organization . Each computer has an unique computer account. Computer Account allow each computer to authorize and authenticate to use its resources.A server be a Domain Controller or Catalog server which maintain all the other system activities in that domain.


Users and computers of that domain are called as the member of the group.All the permissions , authorization all are applicable to the members of the group.There are two types of groups


  • SECURITY GROUPS : The members of the group ensure the domain security and the access of resources .
  • DISTRIBUTION GROUPS : The members in the domain who access and use the resources.




  • DOMAIN LOCAL GROUP : To give access to the resources of the domain to the different group , members .
  • GLOBAL GROUP : To give access to different domain from a specific domain



There are many active directory services but the major services used are


  • Domain Services
  • Lightweight Directory Services
  • Certification Services
  • Federation Services
  • Rights Management Services




  • - Highly Secured - They have policies and permissions for security at different levels.
  • - Objects can be located anywhere physically
  • - Easily Scalable - Millions of user can managed at a single domain
  • - Easy to locate objects
  • - Centralized Storage System
  • - Individual Profiles
  • - Centralized Auditing - which is easy to track all operations


Active Directory Lightweight Directory Services :

Microsoft Active Directory Lightweight Directory Services (AD LDS) is an independent mode of Active Directory that provides dedicated directory services for applications.AD LDS is a directory services solution for developers who are familiar with programming for Active Directory. Developers who are unfamiliar with Active Directory will find that integrating AD LDS as a directory service for their applications is easier than using the complete features of Active Directory. In both cases, AD LDS provides a directory services solution for developers who seek compatibility and consistency with Active Directory.

Azure Active Directory :

Azure Active Directory (Azure AD) is Microsoft’s multi-tenant, cloud-based directory, and identity management service that combines core directory services, application access management, and identity protection into a single solution. Azure AD also offers a rich, standards-based platform that enables developers to deliver access control to their applications, based on centralized policy and rules.

Federation Services :

Active Directory Federation Services (AD FS) is a single sign-on service. With an AD FS infrastructure in place, users may use several web-based services (e.g. internet forum, blog, online shopping, webmail) or network resources using only one set of credentials stored at a central location, as opposed to having to be granted a dedicated set of credentials for each service. AD FS's purpose is an extension of that of AD DS: The latter enables users to authenticate with and use the devices that are part of the same network, using one set of credentials. The former enables them to use the same set of credentials in a different network.

Forest in Active Directory :

The Active Directory framework that holds the objects can be viewed at a number of levels. The forest, tree, and domain are the logical divisions in an Active Directory network.Within a deployment, objects are grouped into domains. The objects for a single domain are stored in a single database (which can be replicated). Domains are identified by their DNS name structure, the namespace. At the top of the structure is the forest. A forest is a collection of trees that share a common global catalog, directory schema, logical structure, and directory configuration. The forest represents the security boundary within which users, computers, groups, and other objects are accessible.

Thats all the introductory of Active Directory and its services . If you like this article support by showing a thumbs up or you have any queries feel free to share in the comment section below.

Rejin Paul

Hello, Welcome to our Rejinpaul Network. we are Committed to provide educational services for students through our Important Threads in this Website. N.R.Rejinpaul,Founder / Rejinpaul Network working for the welfare of the students since 2010


There is no Comment yet.


{{ comment.username }}

{{ }}
{{ comment.comment }}
leave a comment

{{ commentMsg }}

Please Login & post your comments...

Create Account

This is required.
This is required.
This is required.
This is required.
This is required.
This is required.
This is required.
Male Female
This is required.
School College
This is required.
This is required.

Log In Your Account

This is required.
This is required.

Forgot Your Password?

Post Your Rating

your rating : {{ ratings.rating }}