Module 3 - User authentication and authorisation. (Active Directory) CEV000601
Active Directory training is for delegates who need a better understanding of how it’s used within a domain infrastructure. This module will equip delegates with the following knowledge:
- What is Active Directory and a Domain?
- The AD infrastructure and Group Policy.
- How some security is implemented using AD.
- Configuration of domain user and computer accounts.
- How to use LDAP tools to connect to AD structure.
The module is structured as below:
Installation of AD (Domain Services):
- Install guide
- Describe Active Directory
- Describe what a domain is and why it’s used.
- The key elements of the AD structure
Users, Computers, Organizational Units and Sites:
- What is a user account ?
- What is a computer account ?
- What is an OU and how are OU’s used ?
- Passwords & Password Rules
- SSID – Security Identifiers
- Standard Accounts
- Assigning user privileges
- The AD recycle bin
- User configuration from the “Administrative Center”
- Domain, Schema and Enterprise Administrator accounts.
Security:
- Authentication /Authorisation
- PKI
- Kerberos
Group Policy:
- What is group policy ?
- AMX, ADMX files
- Deploying a GP
- User Control
- Computer Control
- 3rd Party Software Control with GP
LDAP
- Connecting to an LDAP service.
- Understand the makeup of an LDAP query.
Azure AD
- Define Azure AD concepts, including identities, accounts, and tenants.
- Describe Azure AD features to support different configurations.
- Understand differences between Azure AD and Active Directory Domain Services (AD DS).