Question

1. What is the default protocol used in AD?

2. What is Kerberos?

3. Describe what the following are: Trees, Forest, Domains, and OU

4. Where is the default database for AD located?

Answer 1

Answer 1:

The default protocol used in AD is LDAP ( Lightweight Directory Access Protocol).

Answer 2:

Kerberos is a computer network authentication protocol that works on the basis of tickets to allow nodes communicating over a non-secure network to prove their identity to one another in a secure manner.

Answer 3:

The Active Directory framework that holds the objects can be viewed at a number of levels. The forest, tree, and domain are the logical divisions in an Active Directory network.

Tree: A tree is a collection of one or more domains and domain trees in a contiguous namespace, and is linked in a transitive trust hierarchy.

Forest: At the top of the structure is the forest. A forest is a collection of trees that share a common global catalog, directory schema, logical structure, and directory configuration. The forest represents the security boundary within which users, computers, groups, and other objects are accessible.

Domains: A domain is defined as a logical group of network objects (computers, users, devices) that share the same Active Directory database.

OU (Organisational units): The objects held within a domain can be grouped into Organizational Units (OUs).^[19] OUs can provide hierarchy to a domain, ease its administration, and can resemble the organization's structure in managerial or geographical terms. OUs can contain other OUs—domains are containers in this sense.

Answer 4:

The default active directory database file locationis C:\Windows\NTDS.