Discussion replies
Must be 150 words each. Must be substantive and not just a clique of the other persons writing. Must use proper grammar and english
1) Chapter 2 IP Address
> When you hear IP address what do you think of? Does something like 192.168.1.25 come to mind? What about 2601:680:C101:19A0:D0F5:D589:1C45:F9EF? No? What are the differences between the two? What are they called?
Share your experience or what you’ve learned from the reading.
2) Chapter 2 TLDs
Before I started taking these classes I really didn’t have that great of an understanding of Domain names. I knew the few ones like .com, .org, .net, or .edu but I did not fully understand why they are there and what they really mean. These examples are top-level domains (TLD). The DNS distributed database is like an inverted tree and is called the domain space. Every node or domain if you will, has a unique name. At the top of the tree is the root which is why it looks like an upside down tree. The root is written by a dot and next is the TLD. Each node branches out into another set of domains combining to form VOLTRON J.K. they form domain names like whatdidthefivefingerssaytotheface.com.
3) Chapter 2
When using Windows Server 2012, the DNS can have several advantages over other Microsoft DNS; some can also be called improvements from users. Some of these names considered as an advantage are Background zone loading, Support for TCP/IP version 6, Read-only domain controllers, GlobalName zone, DNS Socket Pool, DNS Cache Locking, DNSSEC, DNS Devolution, Record Weighting, Netmask Ordering, and DnsUpdateProxy Group. Background Zone Loading addresses the problem with receiving the Active Directory; it uses separate threads which will allow DNS server to service requests while loading the rest of the area. The support for IPv6 Addresses solved the problem with running out of TCP/IP addresses, the lack of IP addresses was a problem as it was meant for academic and government purposes only., any other feature helps the user become more engaged with Windows Server 2012 (Panek, 2015).
4) Supporting Activity
I’ve had a few experiences with Active Directory in previous classes – nothing as in-depth as now though. As I recall, Active Directory is the place where role based access controls are implemented. I think this is also where Groups and Containers come into play.
According to “Active Directory” (2017), “Active Directory is a centralized and standardized system that automates network management of user data, security, and distributed resources, and enables inter operation with other directories. Active Directory is designed especially for distributed networking environments.” (para. 1). Active Directory offers some features including, management of user accounts, clients, servers, and applications, LDAP support, and it is designed to be both forward and backward compatible.
On the Microsoft page cited below – about mid page – I found this Table of Built In Default Service Administrator Groups and Accounts
| Group or Account Name |
Default Location |
Description |
|---|---|---|
|
Enterprise Admins |
Users container |
This group is automatically added to the Administrators group in every domain in the forest, providing complete access to the configuration of all domain controllers. |
|
Schema Admins |
Users container |
This group has full administrative access to the Active Directory schema. |
|
Administrators |
Builtin container |
This group has complete control over all domain controllers and all directory content stored in the domain, and it can change the membership of all administrative groups in the domain. It is the most powerful service administrative group. |
|
Domain Admins |
Users container |
This group is automatically added to the corresponding Administrators group in every domain in the forest. It has complete control over all domain controllers and all directory content stored in the domain and it can modify the membership of all administrative accounts in the domain. |
|
Server Operators |
Builtin container |
By default, this built-in group has no members. It can perform maintenance tasks, such as backup and restore, on domain controllers. |
|
Account Operators |
Builtin container |
By default, this built-in group has no members. It can create and manage users and groups in the domain, but it cannot manage service administrator accounts. As a best practice, do not add members to this group, and do not use it for any delegated administration. |
|
Backup Operators |
Builtin container |
By default, this built-in group has no members. It can perform backup and restore operations on domain controllers. |
|
DS Restore Mode Administrator |
Not stored in Active Directory |
This special account is created during the Active Directory installation process, and it is not the same as the Administrator account in the Active Directory database. This account is only used to start the domain controller in Directory Services Restore Mode. In Directory Services Restore Mode, this account has full access to the system and all files on the domain controller. |
I love the idea of access controls – I think it makes what could be a tough job, easier. Plus, it helps keep the network safer.