Deals

Oneplus Bullets Z2 Bluetooth Wireless in Ear Earphones with Mic, Bombastic Bass - 12.4 mm Drivers, 10 Mins Charge - 20 Hrs Music, 30 Hrs Battery Life, IP55 Dust and Water Resistant (Magico Black) Tukzer Universal Stylus Pen for Smartphone/Tablet/iPad/Pro/Air/iPhone/iOS boAt Type-C C600 Tangle-Free, Sturdy Cable w/ 100W/5A Fast Charging & 10Gbps Data Transmission, 10000+ Bends Lifespan and Extended 1.5m Length JBL Go 4, Wireless Ultra Portable Bluetooth Speaker, Pro Sound, Vibrant Colors, Water & Dust Proof, Type C (Without Mic, Black) CELLBELL Desire C104 Mesh Mid Back Ergonomic Office Chair/Study Chair/Revolving Chair/Computer Chair for Work from Home Metal Base Seat Height Adjustable Chair (Grey)
Slide 2
Slide 3
Slide 4
Slide 5

AD(Active Directory)

Active Directory is like the brain of an organization’s network. It’s a system developed by Microsoft to:


  1. Store Information about objects: About users, computers, printers, and other resources in the network.
  2. Control Access: Decide who can access which resources (e.g., files, applications, servers).
  3. Centralize Management: Allow administrators to manage everything from one place.


Organizations use AD because it has


Centralised Control:

Imagine a company has 1,000 employees. Instead of managing each user’s access separately on every computer, AD does it all in one place.


Single Sign-On (SSO):

  • Users log in only once with their AD credentials and gain access to all resources they’re authorised for.


Security:

  • AD enforces strict security policies (ex: password rules and two-factor authentication) and makes it easy to disable a user’s account if needed.


Organized Network:

  • AD organizes users, groups, computers, and devices into an easy-to-manage structure.


For example :

Imagine a large castle where many workers live and work. The castle has rooms, offices, libraries, and treasure vaults. The king (or queen) wanted to make sure:

  1. Only authorised people could enter the castle.
  2. People were allowed only into the rooms they needed.
  3. Everything inside the castle was well-organized and easy to manage.


The king realised that just having guards at the doors wasn’t enough. The castle needed a system to manage all the people, permissions, and rules. And that’s how Active Directory (AD) was born.


Think of AD as a directory service that organizes and secures everything in your network. Here’s how it works:


  1. The Castle's Directory:
    • AD mainly acts as a giant database that keeps track of all employees (users), departments (groups), and tools (resources) in the organization.
    • Example: "Lucy belongs to the Marketing team and has access to the Marketing Shared Drive and Email System."
  2. Permissions and Rules:
    • AD sets rules to decide who can access what.
    • Example: Only the IT team can access the server room, and only HR can open the payroll folder.
  3. Checks Authentication and Authorization:
    • When someone tries to log in, AD checks authentication(who are you) and authroization(What are you allowed to do)
  4. Domain Controller (The Castle Guard):
    • AD uses a Domain Controller (DC)—a special server that handles all authentication requests.
    • Example: When a user logs in, the Domain Controller says, “Let me check if your username and password are correct and gives them access if everything matches.


You may get doubt LDAP also offers centralized control, then why AD -> click here 



Topic:

Popular Posts

  • Windows | Multiple Login Failures from a Single User Analysis
    Multiple Login Failures from a Single User Objective: The objective of this use case is to identify brute force attacks that could be dictio...
  • Types of accounts in Windows | Windows Accounts
    Windows Account Types   References : Local and Domain Accounts Types of windows accounts
  • Multiple VPN Logins From Different Countries
    Multiple VPN Logins From Different Countries  means that the same user account is trying to log in from multiple geographical locations thro...
  • Tshark
      T shark -   TShark  is the command-line version of  Wireshark It performs similar network packet capture and analysis functions but withou...
  • Malicious URL Access Detected
    Malicious URL access detected means  when a user or host attempts a connection to a malicious website, like phishing pages, malware, or comm...
  • Unfamiliar Sign-In
    Unfamiliar Sign-In means a security event where a login attempt is detected from a device, location, or IP address that was not previousl...
  • DNS Zones
    Zone files are plain text files that store information about a specific domain's DNS configuration. They are part of the Domain Name Sys...
  • Querying DNS Records
    In the Windows operating system, the nslookup command is used to query DNS records. For example, to query the DNS A record for a domain, u...
  • DNS Server basics, types, record types, query types
      The Basics of DNS: The Internet's Address Book Imagine if every time you wanted to call a friend, you had to remember their exact 10-d...
  • How to play with DNS records
    Ramya is an intelligent and ambitious young woman with a deep passion for creating websites and a talent for crafting beautiful wool product...

Buy me coffee

Buy me coffee
#Fuel My Cybersecurity Journey with a Coffee!