A computer network can be divided logically into two networking models.
• Workgroup
• Domain
Difference Between Workgroup and Domain Table 9
Workgroup Domain
1. It is a peer-to-peer networking model.
2. There is no client and no server. All computers are in equal status. 3.This model is recommended for small networks (upto 10 pcs).
4. There is no centralized Admin- istration and each PC is administrated separately.
5.In this model, low grade operating system like 2000/xp professional, win 98 etc can be used.
6. Workgroup can be given names like sales, HR, accounts etc.
1. It is a server based networking model. 2.there is a centralized dedicated server computer called domain controller (DC)which controls all other computers called clients.
3. This model is recommended for large networks.
4. There is centralized administration and each PC can be administrated and managed from the server.
5.In this model high grade operating system ,like win2000/2003 server are used.
6. Domain can also given names like abc.com, xyz.com etc.
7 Users accounts are created in each
PC and are called as “Local Users”. 7.Users accounts are created on sever side DC and are called as ”Domain Users”.
Active Directory uses domain to hold objects, each domain has security boundary. Users must authenticates to the domain in which their users account resides before they can access resources, such as a shared folders. Active Directory also links related domains in a hierarchical structure and users can access resources in any of the domain in which their user account resides. The hierarchical structures of related domain is called a tree, and all domains in the tree share the same Domain Name System (DNS) namespace. All the domains and the trees in a single organization are called a forest. All domains in the forest share same schema.
3.7.1.1
Types of Domain
• Domain Forest
• Domain Tree
• Organization unit
Domain Forest
A forest is created when window 2k3 server computer is configured as a domain controller. A forest is a collection of multiple domain link together and relationship between the domains.
Domain Tree
A domain tree is made up when there is a parent child relationship between the domain in the forest. The child domain includes the complete parent domain name. a tree is a set of two or more domains sharing common namespace e.g we can create a parent domain and then child domain like mail.yahoo.com; where mail- child domain, yahoo- parent domain.
Fig 8: Structure of domain forest and domain tree Organization Unit (OU)
Organization unit is the smallest unit in a domain network that can contain users, computer groups, shared folders, printers and group policy object in simple words. OU means department like sale department, accounts department like sales, accounts in a company OU can be used to apply different security policies to computer and users in different department. OU also helps in dividing administration among different administrator of managing only computer and users of sales department.
3.7.1.2
Types of Domain Controller
(i) PDC : Primary domain controller (ii) ADC : Additional domain controller (iii) BDC : Backup domain controller
Primary Domain Controller (PDC)
This is the first domain controller, in this domain all entries are created in it like users account, group policy, Organization unit etc. All FSMO role are done in PDC.
Additional Domain Controller (ADC)
It is a domain network, it is important to have more than one DC so that if one DC fails, the other DC will continue serving the client. There is also load balancing of Active Directory Service if we have more than one DC.
The first DC we create is simply called PDC and if we create an extra DC then that DC is known as ADC. ADC has same configuration of AD as primary domain controller.
All domain controllers in a domain networking are masters. We can make a change in the active directory of any domain controller and that change is replicated to all other domain controllers. Replication takes place among all the domain controllers and it is controlled automatically. If we create a user in the first domain controller, it is automatically created in the ADC because of replication.
All the domain controllers in the domain networking are peers and this model is called as multi- master model
.
Fig 9: Multi-Master Model
3.7.1.3 Requirements of Active Directory
(i) Window 2000/2003 server computer. (ii) Atleast one NTFS partition.
(iii) Static IP address
(iv) Atleast 1GB free hard disk space
(v) LAN card enabled and connected to the network
(vi) Install DNS, if not installed of Active Directory and configure it.
It should be noted that active directory cannot work without DNS.DNS is automatically installed and configured during the Active Directory installation.
3.7.1.4 Installation of Active Directory
First of all fill the static IP address, then install DNS service into it and after that install the Active Directory
• start→ run→ dcpromo
• Ok
• Welcome to active directory → next→ next
• Select domain controller for a new domain e.g (gmail.com)
• Next
• Domain NETBIOS name (gmail.com)
• Next
• Data folder, folder new tech directory service→ next (SYS VOL)
• Next
• Click on install and configure the DNS server on this computer to use this DNS server as its preferred DNS server.
• Tick on permission compatible only with window server
• Next
• Enter the restore mode and the password
• next→ next→ finish
• now restart computer
start→ run→ dcpromo
This command is also used to remove active directory, if after this command the active directory is not removed then type
• start→run
• cmd→dcpromo /forceremoval
• Ok