TABLE OF CONTENTS An important part of the network administrator s job involves management of the network s users and computers. Windows Server 2003 assigns accounts to both users and computers for security and management purposes. User accounts can be further managed by placing them in groups so that tasks such as assigning permissions can be applied to an entire group of users simultaneously rather than having to do so for each individual user account.
This chapter introduces you to the concept of security principles users, groups, and computers and the Security Identifiers (SIDs) that are used to represent them. You ll learn about the conventions and limitations for naming these objects.
We show you how to work with Active Directory user accounts, including the built-in accounts and those you create. You ll also learn to work with group accounts, and you ll learn about group types and scopes. You ll learn to work with computer accounts, and how to manage multiple accounts. We ll show you how to implement user principal name (UPN) suffixes, and we ll discuss how to move objects within Active Directory.
You ll learn to use the built in tools both graphical and command line to perform the common administrative tasks associated with the management of users, groups, and computers; and the exercises will walk you through the steps of creating and managing all three types of accounts.
EXAM 70-294 OBJECTIVE 3
Active Directory is made up of a wide variety of different directory service objects. Among these objects are security principal accounts, which consist of...
