Chapter 1: LDAP Basics

The purpose, advantages, organization, and role of Active Directory for Windows 2000-based domains have already been described extensively in many books and articles. If you are not familiar with Active Directory basics at this point, comprehensive information on it can be easily found. The Windows .NET version of Active Directory is a rather evolutionary step in the architecture of Windows domains. (The Windows 2000 version of Active Directory was, indeed, a revolution if one compares it with "flat" NT Directory Service (NTDS) domains.) Therefore, an administrator deploying Active Directory on computers running Windows .NET will face the same problems that are peculiar to the Active Directory in general. In addition, most requirements for installing Active Directory and the methods of administering the Windows .NET-based domains have not been changed in the new version of Active Directory.

There are two Internet standards that appeared long before Active Directory, but which are very closely related to it. These standards are Lightweight Directory Access Protocol (LDAP v3) and Domain Name System (DNS). It is impossible to speak about Active Directory without using the terms stated by these standards. That is why in the first three chapters of the book, we will discuss the terminology and concepts that are widely used in the remaining chapters.

LDAP as a Cornerstone of Active Directory

Use of the Active Directory service (both on Windows 2000 and Windows .NET operating systems) requires a good understanding of the LDAP protocol basics since this protocol is used everywhere for accessing directory information. Familiarity with and knowledge of LDAP are also necessary for working with many tools and utilities, such as the Active Directory Administrative Tool (Ldp.exe), ADSI Edit snap-in, Search.vbs script, LDIF Directory Exchange utility (LDIFDE.exe), and others, and are needed for scripting as well. This concerns all four LDAP models discussed below. Therefore, before we begin to discuss the Active Directory installation, administrative snap-ins, system tools, and other topics, let us first review the LDAP concepts. Then, some Active Directory specific terms and technologies will be considered in the next chapter.


All main features of LDAP v3 are described in RFC 2251 through RFC 2256. Refer to these RFCs for more information, or check out the Q221606 article in the Microsoft Knowledge Base. You may also find links to other related standards there.

Windows  .NET Domains & Active Directory
Windows .NET Server 2003 Domains & Active Directory
ISBN: 1931769001
EAN: 2147483647
Year: 2002
Pages: 154 © 2008-2017.
If you may any questions please contact us: