forest designs & trusts
TRANSCRIPT
Forest Designs & Trustsin Active Directory
CST 2810 Network ImplementationBy: Beth Schoren
3/21/2014
A Real Forest? Why?
Because You Can’t See The Forest For The Trees
Unless You Want To Know What Kind Of TreeSo Visualize If You Will
Continue to Visualizebut Instead of Real Forests
Think of Departments
Depending on the size of your companyDepends on how many trees you have in a forest
Make a collection of purposes
BIG Little
Make Some DecisionsAre You Going to Set up the Company –
One Way or the Other
Organized Disorganized
Another VisualizationThink of Bookmarks
Or Favorites FilesOr Email Folders
Making A Forest DesignSimplified Version
• Visualize the forest from afar.
• Visualize how the forest was designed. With planning or sprinkled about.
• Think now of Departments.• Big or Little – How many
trees will be in your forest?• Will you make it organized
or disorganized?• So get to designing!
Academic Way• Microsoft admits it is hard to
understand forests and trees.• Understanding names: parent domain;
tree root; namespace; root domain; security boundary, etc.
• Active Directory Wizard – Global Catalog helps.
• Dictionary words included.• Decommissioning a forest.• Change the functional level of a forest.• Use Domain and Trusts snap-in• Structure of the sites before the forest
is built.• Realms; subnets; logical separations
and replication• All the help you will ever need.
Business Deals Used To Be Made With A Simple Handshake
A Sign Of Trust
Trusts• One Way• Two Way• Incoming• Outgoing• Transitive A=B, B=C, A=C• Parent• Child• External• Realm• Tree Root• Forest Trusts• Shortcut
• Merging server 2003 into server 2008
• Setup root DNS server• Must have: Administrator
access• Setup One Way Incoming on
Local Domain• Ask Administrator on Other
Side to make a One Way Incoming Trust.
• Or Use the New Trust Wizard to create both sides by remote
Properties Trusts New
TrustsTrust Type
Forest Trust
Direction
One Way Incoming
Both this domain and
specified domain
Forest-wide
Authentication
Trust Selections Complete
Confirm Incoming Trust
Finish