Jahan University

Vice Chancellor office

computer science faculty
Network Department

Network Administration
Semester: 2nd

Lecture: 3rd

Prepare by: year: 1402

1
Previous lecture

• Network Overview
• Windows Server Overview
• Installing Windows Server
• Understanding Server Core
• A word on Nano Server
• Post Installation Configuration
• Introduction to PowerShell

2
Chapter3

3
Lecture Outline
• Network Architecture Overview
• Machine Roles in Domain
• Describe Purpose of Domain Controllers
• Introduction to AD DS Structure
• Installing Active Directory Domain Services (AD DS)

4
Network Architecture Overview
Domain
A client/server network is the best example of a domain where a dedicated server is
used to provide services.
• Centralized database
• Centralized management of resources
• Enhanced security
Workgroup
A peer-to-peer network is the best example of a workgroup where computers share
resources without using a dedicated server.
• Distributed database
• Decentralized management of resources
• Weak security

5
Server Roles & Features

Installation of each services on windows server require adding of some roles and
features
• Server Roles:
Are software programs which are installed and configured on server to perform a
specific function Ex: AD DS, DNS, DHCP, WDS, IIS, Print.
• Server Features:
Are software programs which support functionality of one / more than one roles.
Ex: Group Policy Management (Tools), PowerShell.
So you can think of Roles as major functions of the server and Features as smaller add-on
packages.

6
Server Roles & Features

7
Active Directory domain Services

• Directory: is a logical container or folder, that stores information about objects

(Users, Computers, Shared folders, OUs)
• Active directory: is a centralized security database which store information of
network users, groups, organizational units, domain controllers, client machines and
all other objects that can be hide inside a domain.

8
Active Directory domain Services (con…)

• Forest is a collection of one or more domain trees.

• Tree collection of one or more domains
• First domain that is created in a forest is called forest root domain
• Forest root domain holds few objects that do not exist in other domains in the
forest

9
Active Directory domain Services (con…)

10
Active Directory
Structure domain
of AD DS Services (con…)
- Components of AD DS
Composed of both physical and logical components
With knowledge of how AD DS components works together, one
can efficiently manage network, and control what resources users
can access

11
Structure of AD DS - Components of AD DS
Physical Components
Structure of AD DS - Components of AD DS
AD DS information is stored in a single file on each domain
controller’s hard disk
Physical Component Description
Domain Controllers Contain copies of the AD DS database
Data Store The file on each domain controller that stores the AD DS
information
Global Catalog Partial, read-only copy of all objects in the forest. Speeds up
Servers searches for objects that might be stored on domain
controllers in a different domain in the forest
Read-only domain AD DS in a read-only form. Often used in Branch offices
controller (RODC) where security and IT support are often less advanced than
in the main corporate centers

12
Structure of AD DS - Components of AD DS
Logical Components
Logical components are structures that are used to implement an
appropriate Active Directory design for an organization
Logical Component Description
Partition Section of AD DS database. Although database is one file: NTDS.DIT, it is
viewed, managed and replicated as if it consisted of distinct sections or
instances and these are the partitions, also referred to as naming contexts
Schema Defines the list of attributes that all objects in AD DS can have
Domain Logical. Administrative boundary for users and computers
Domain Tree Collection of domains that share a common root domain and a Domain
Name System (DNS) namespace
Forest Collection of domains that share a common AD DS
Site Collection of users, groups and computers as defined by their physical
location. Useful in planning administrative tasks such as replication of the A
DS
13
Requirement of Advice directory

• Requirements for Active Directory installation

• Server OS (2000, 2003, 2008, 2008 R2, 2012, 2012 R2, 2016, 2019)
• Machine must be on network
• Static IP: assigned by Administrator
• At least one NTFS drive
• 2 GB space
• DNS (Domain Name System)

14
Adding the Active Directory Domain Services Role
AD DS is a role in win server 2016 that lets system administrators to manage and
store network's information. Adding the AD DS role is a two step process:
\
1. Step: Installation of server roles and features for Active Directory
2. Step: Promoting to a Domain Controller
To add AD DS role in win server 2016 complete the following requirements.
NTDS: used to store active directory database
Sysvol: used to stores the server copy of the domain's public files

15
Domain Controllers
Since the prerequisites are met, the server will restart to complete promoting it self
as a domain controller.
A domain controller (DC) is a centralized directory database server that stores user

\
account and security information for one domain and is responsible for securely
authenticating requests for accessing resources in your organization's domain.
Domain Controllers
Domain Controllers

Primary Domain Controller (PDC) Backup Domain Controllers (BDC)

Exp: DC Exp: ADC,RODC

16
Summary
• Network Architecture Overview
• Intro to Active Directory Domain Services
• Understanding Server Roles & Features
•
• \
Installing Active Directory Domain Services
Introduction to Domain Controllers

17
 Home work
Write information about group policy of
ADDS and how implement it in real domain
ADDS(practical)

18
End
Any question

19