Mission-Critical Active Directory

This chapter provides an introduction to Windows 2000 security. It covers general security concepts, such as the goals of security and the fundamentals of cryptography. The bulk of the chapter discusses two fundamental operating system security services and the way they are implemented in Windows 2000: access control and auditing. Since authentication is such a big topic, it will be covered in detail in Chapter 6. The reason why we will spend so much time on security is not just because we like it so much, but mainly because we think that a solid understanding of the Windows 2000 security features is a key requirement for the creation of a secure and reliable enterprise Active Directory infrastructure.
The next five chapters of this book will focus on Windows 2000 security. We will cover operating system security, security management, and public key infrastructures. As an introduction, here are the Windows 2000 security headlines.
Windows 2000 security is tightly integrated with the Windows 2000 directory system: the Active Directory. This integration is implemented as follows:
Windows 2000 security is based upon numerous open standards. Open standards facilitate security interoperability between Windows...