- Evolution of Directory Services
- Active Directory Development
- Active Directory Structure
- Active Directory Components
- Domain Trusts
- Organizational Units
- Groups in an Active Directory Environment
- Active Directory Replication
- DNS in Active Directory
- Active Directory Security
- Active Directory Changes in Windows .NET Server 2003
- Summary
- Best Practices
Best Practices
Don't necessarily set up multiple domains for different remote offices or sites.
Purchase the domain namespaces that theoretically could be bought and used on the Internet.
Carefully consider using DDNS, especially when integrating with Unix-based DNS.
Consider using cross-forest trusts between two disparate Active Directory forests instead of merging the forests.
Place the infrastructure master role on a domain controller that isn't also a global catalog.
Use the ntdsutil command-line utility to transfer OM roles in disaster recovery situations.
Use global groups to contain users in the domain in which they exist but also to grant access to resources in other trusted domains.
Use universal groups to contain users from any domain in the forest and to grant access to any resource in the forest.