Based the functional structure the organization

Domain

Individual resources are called objects

User Account

Computer

Objects belong to classes Group

Replication

In a Windows 2003
network, you can
create multiple domain
controllers (DCs)

Replications	5

AD cooperates with DNS during logon process

10.1.10.25	3	Log on request for userID = john;
Workstation		Log on request for userID = john;
Workstation

1	2	fname	lname	userID	OU	domain
1	2
I need Domain Controller IP address	IP address is 10.1.10.16
			Frulla		Sales
		John	Doe	John	Mktg	contoso.com
DNS			:		:
Server			:	:	:	:

10.1.0.1
10.1.0.1

Active directory and DNS

AD cooperates with DNS in locating network resources and services

10.1.10.25
Workstation	3
Workstation	3

Controller

1	2	CN = John Doe, OU = Mktg, DC =	lname	userID	OU	domain
1	2	contoso, DC = com
I need Domain Controller IP	IP address is 10.1.10.16	fname
address	IP address is 10.1.10.16	Lizza	Frulla	Liz	Sales
DNS		Lizza	Frulla	Liz	Sales
		John	Doe	John	Mktg
		:		:	:
Server		:	:	:	:	:

		DC sends back user’s Unique Distinguish Name

1)	Domains are represented in a contiguous namespace
2)	Two-way trust relationships between domains (each domain can access other domain resources)
3)
3)
	east.tracksport.com
	west.tracksport.com	north.tracksport.com	12