La presentazione è in caricamento. Aspetta per favore

La presentazione è in caricamento. Aspetta per favore

Introduzione ad Active Directory

PubblicatoBettino Fusco Modificato 10 anni fa

Presentazioni simili

Presentazione sul tema: "Introduzione ad Active Directory"— Transcript della presentazione:

1 Introduzione ad Active Directory
3/27/2017 2:27 AM Introduzione ad Active Directory Renato Francesco Giorgini © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

2 Serie Webcast Active Directory:
3/27/2017 2:27 AM Serie Webcast Active Directory: Introduzione ad Active Directory Progettazione di Active Directory Recovery e troubleshooting di Active Directory Gestione della sicurezza di Active Directory                         © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

3 Agenda Componenti logici di AD: Domini, Foreste
3/27/2017 2:27 AM Agenda Componenti logici di AD: Domini, Foreste Componenti fisici di AD: Domain Controller, Siti Domain Naming Service (DNS) Replica di Active Directory Operations master © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

4 Agenda Componenti logici di AD: Domini, Foreste
3/27/2017 2:27 AM Agenda Componenti logici di AD: Domini, Foreste Componenti fisici di AD: Domain Controller, Siti Domain Naming Service (DNS) Replica di AD Operations master © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

5 Cos’è un Servizio di Directory?
3/27/2017 2:27 AM Cos’è un Servizio di Directory? È un servizio che aiuta a tracciare e a trovare oggetti in rete Active Directory Management Computer Servizi Files Utenti © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

6 Cosa posso fare con Active Directory?
3/27/2017 2:27 AM Cosa posso fare con Active Directory? Ricerca di Utenti, Computer, Stampanti, Share di Rete, Servizi distribuiti, Indirizzi Per l’Autenticazione Per l’Autorizzazione all’accesso alle risorse Per fare Auditing Per gestire l’installazione del Software Per gestire la configurazione dei PC (Policy) © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

7 Oggetti e Attributi Oggetti: Computer, Utenti, Gruppi
3/27/2017 2:27 AM Oggetti e Attributi Oggetti: Computer, Utenti, Gruppi CN: Canonical Name RDN: Relative Distingushed Name Attributi Oggetti Proprietà comuni utilizzabili da più oggetti © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

8 I “Domini” in Active Directory
3/27/2017 2:27 AM I “Domini” in Active Directory Confine di Autenticazione Confine per le Policy CONTOSO.COM Confine di Replica © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

9 Struttura Domini Active Directory
3/27/2017 2:27 AM Struttura Domini Active Directory Schema Condiviso CONTOSO.COM Configurazione US.CONTOSO.COM Global Catalog OHIO.US.CONTOSO.COM © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

10 Trust Transitivi tra Domini
3/27/2017 2:27 AM Trust Transitivi tra Domini CONTOSO.COM UK.CONTOSO.COM US.CONTOSO.COM © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

11 Foreste Active Directory
3/27/2017 2:27 AM Foreste Active Directory CONTOSO.COM FABRIKAM.COM US.CONTOSO.COM UK.FABRIKAM.COM Schema Global Catalog Configurazione © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

12 3/27/2017 2:27 AM Domini e Trust © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

13 Organizational Unit Organizzate in base: CONTOSO.COM
3/27/2017 2:27 AM Organizational Unit Organizzate in base: Necessità amministrative Stessi requisiti Delega permessi Group Policy Configurazione Sicurezza OU Admin OU Security OU Policy CONTOSO.COM © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

14 Utilizzo delle Organizational Unit
3/27/2017 2:27 AM Utilizzo delle Organizational Unit Sales Department London Desktops Marketing Department Printers New York Hardware Devices © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

15 Organizational Units 3/27/2017 2:27 AM
© 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

16 Agenda Componenti logici di AD: Domini, Foreste
3/27/2017 2:27 AM Agenda Componenti logici di AD: Domini, Foreste Componenti fisici di AD: Domain Controller, Siti Domain Naming Service (DNS) Replica di AD Operations master © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

17 Domain Controllers DC PDC DC BDC BDC DC Windows Server 2003
3/27/2017 2:27 AM Domain Controllers DC PDC DC BDC BDC DC Windows NT 4.0 Windows Server 2003 © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

18 Siti Active Directory I Siti sono utilizzati per: Sito A WAN Link
3/27/2017 2:27 AM Siti Active Directory Sito A WAN Link I Siti sono utilizzati per: Localizzare servizi Ottimizzare la Replica Definire le Policy Sito B © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

19 Siti e Domini Sito A US.CONTOSO.COM CONTOSO.COM Sito B
3/27/2017 2:27 AM Siti e Domini Sito A US.CONTOSO.COM CONTOSO.COM Sito B © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

20 Global Catalog È una struttura “trasversale” rispetto ai Domini
3/27/2017 2:27 AM Global Catalog È una struttura “trasversale” rispetto ai Domini Contiene gli attributi degli oggetti Viene utilizzato per le ricerche È presente nei Domain Controller © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

21 Siti e Global Catalog 3/27/2017 2:27 AM
© 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

22 Agenda Componenti logici di AD: Domini, Foreste
3/27/2017 2:27 AM Agenda Componenti logici di AD: Domini, Foreste Componenti fisici di AD: Domain Controller, Siti Domain Naming Service (DNS) Replica di AD Operations master © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

23 Processo di ricerca nel DNS
3/27/2017 2:27 AM DNS Il Domain Naming System permette di trovare servizi e risorse nella rete Processo di ricerca nel DNS DNS Server DC Servizio richiesto Informazioni sul Sito Indirizzi IP Record SVR Cache © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

24 Server DNS e requisiti per AD
3/27/2017 2:27 AM Server DNS e requisiti per AD BIND 8.1.2 Windows NT Windows 2000 Windows Server 2003 Dynamic Update* AD Integration Secure Update SRV Records* * Necessari per poter usare Active Directory © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

25 Migrazione DNS Aggiornamento a BIND 9.x
Aggiornamento server DNS Microsoft Delega ad un server DNS Microsoft © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

26 3/27/2017 2:27 AM DNS © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

27 Agenda Componenti logici di AD: Domini, Foreste
3/27/2017 2:27 AM Agenda Componenti logici di AD: Domini, Foreste Componenti fisici di AD: Domain Controller, Siti Domain Naming Service (DNS) Replica di AD Operations master © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

28 Replication Scope All’interno del Dominio All’interno della Foresta:
3/27/2017 2:27 AM Replication Scope All’interno del Dominio NC Dominio All’interno della Foresta: NC Schema NC Configurazione © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

29 Replication Scope Tra Siti differenti (Compresso) All’interno del Sito
3/27/2017 2:27 AM Replication Scope Tra Siti differenti (Compresso) All’interno del Sito (Token Ring) © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

30 3/27/2017 2:27 AM Replica © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

31 Agenda Componenti logici di AD: Domini, Foreste
3/27/2017 2:27 AM Agenda Componenti logici di AD: Domini, Foreste Componenti fisici di AD: Domain Controller, Siti Domain Naming Service (DNS) Replica di AD Operations master © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

32 Operations Masters Eseguono operazioni in modo esclusivo
3/27/2017 2:27 AM Operations Masters Eseguono operazioni in modo esclusivo Sono utilizzati per Ruoli specifici di AD Di default, tutti i ruoli sono attivati nel primo Domain Controller installato © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

33 Ruoli Operations Master
3/27/2017 2:27 AM Ruoli Operations Master Ruoli Foresta Ruoli Dominio Schema Master PDC Emulator RID Master Domain Master Infrastructure © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

34 3/27/2017 2:27 AM Riepilogo Active Directory permette di gestire e di controllare in modo efficace le risorse di rete, i computer, gli account Utente. Le Organizational Unit sono uno strumento flessibile per la gestione e l’organizzazione degli oggetti all’interno di AD Il DNS di Windows Server permette di sfruttare un’integrazione maggiore con AD aumentando anche la sicurezza La replica di AD permette di ottimizzare il traffico di rete proteggendo i dati replicati © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

35 © 2005 Microsoft Corporation. All rights reserved.
3/27/2017 2:27 AM © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary. © 2005 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Scaricare ppt "Introduzione ad Active Directory"

Presentazioni simili

3/25/2017 3:51 AM TechNet Security Workshop per la PMI Come rendere sicura l'infrastruttura IT di una Piccola e Media Impresa Marco Agnoli Responsabile.

3/25/2017 3:51 AM TechNet Security Workshop per la PMI Come rendere sicura l'infrastruttura IT di una Piccola e Media Impresa Marco Agnoli Responsabile.
Windows Server 2003 Active Directory Diagnostica, Troubleshooting e Ripristino PierGiorgio Malusardi IT Pro – Evangelist Microsoft.

Windows Server 2003 Active Directory Diagnostica, Troubleshooting e Ripristino PierGiorgio Malusardi IT Pro – Evangelist Microsoft.
ISA Server 2004 Enterprise Edition Preview. ISA Server 2004.

ISA Server 2004 Enterprise Edition Preview. ISA Server 2004.
ISA Server 2004 Configurazione di Accessi via VPN

ISA Server 2004 Configurazione di Accessi via VPN
Giorgio Quaranta ISV Account Manager

Giorgio Quaranta ISV Account Manager
Visual Studio Tools For Office 2005 Fabio Santini. NET Senior Developer Evangelist Microsoft Italy.

Visual Studio Tools For Office 2005 Fabio Santini. NET Senior Developer Evangelist Microsoft Italy.
Windows Server 2003 SP1 Security Configuration Wizard PierGiorgio Malusardi IT Pro Evangelist Microsoft.

Windows Server 2003 SP1 Security Configuration Wizard PierGiorgio Malusardi IT Pro Evangelist Microsoft.
Novità in Active Directory e nelle Group Policy

Novità in Active Directory e nelle Group Policy
Liberiamo(ci) (dal)le applicazioni con Softgrid

Liberiamo(ci) (dal)le applicazioni con Softgrid
Consumare Web Service Andrea Saltarello

Consumare Web Service Andrea Saltarello
3/27/2017 2:27 AM ©2005 Microsoft Corporation. All rights reserved.

3/27/2017 2:27 AM ©2005 Microsoft Corporation. All rights reserved.
Fatti e misfatti dei protocolli di autenticazione LM, NTLM e Kerberos

Fatti e misfatti dei protocolli di autenticazione LM, NTLM e Kerberos
Progettazione di Active Directory

Progettazione di Active Directory
Configuring Network Access

Configuring Network Access
Training Microsoft Visio Marzo, 2006

Training Microsoft Visio Marzo, 2006
Sharepoint Gabriele Castellani

Sharepoint Gabriele Castellani
| | Microsoft Certificate Lifecycle Manager.

| | Microsoft Certificate Lifecycle Manager.
Strategie di migrazione da Windows NT4 a Windows Server 2003

Strategie di migrazione da Windows NT4 a Windows Server 2003
Branch office update – SP2. Agenda Messa in esercizio degli uffici remoti Compressione HTTP Differentiated Services Cache di BITS.

Branch office update – SP2. Agenda Messa in esercizio degli uffici remoti Compressione HTTP Differentiated Services Cache di BITS.
Active Directory Federation Services

Active Directory Federation Services

Presentazioni simili

Annunci Google