Active Directory Overview (Windows Server) for Interview Preparation




What is Active Directory ?

Active Directory (AD) is Microsoft's directory service used to Manage below Network objects and Resources

  • Manage users
  • Manage Computers
  • Manage Groups
  • Control access to resources
  • apply security policies   

We can call AD as :

A centralized brain of windows network

Without AD:

  • Every computer has its own users
  • Passwords aren't Shared
  • Policies must be configured one-by-one.
With AD:

  • one login works everywhere.
  • Permission are controlled centrally.
  • Security is enforced automatically.
Active Directory Web Services Port number : 9389


Why Active Directory Exists ?

Imagine a company having 1000 Employees:

Without AD

  • 1000 local accounts per Server.
  • Manual access control.
  • No central security.
  • Difficult to Manage.
With AD:
  • One user account per employee
  • login from any company PC
  • Central password rules
  • Easy onboarding or Offboarding


Core Components of Active Directory ?
  • Domain
  • Domain Controller (DC)
  • Objects
  • Organizational units (OUs)
Domain : A domain is a logical group of users, computers and other network resources

Example: Company,local

Everything inside domain follows the same:
  • Security riles
  • Authentication system
  • Policies

Domain Controller (DC) : A Domain controller is a server that stores the database, Authenticates users,
and enforces security policies.

Key Points:

  • We usually have multiple DCs
  • They replicate data between each other
  • if one fails, other DC still work

Objects: Everything in AD is an object
  • Users
  • Computers
  • Groups
  • Printers
  • Service accounts
Each object has Attributes:
  • Username
  • Password hash
  • Email
  • Group membership

Organizational Units (OUs): OUs are folders used to organize objects

OUs help to:
  • Apply Group Polices
  • Delegate admin control
  • Keep AD Clean


Authentication : Steps to show how login works

    Kerberos (Authentication Protocol)

    When a user logs in: 
  1. User enters username/Password
  2. DC verifies credentials
  3. DC issues a Ticket if credentials are correct
  4. User uses ticket to access resources
  • Secure
  • Encrypted
  • No password sent repeatedly
    Alternative Option:

  • NTLM (older, less secure) : Windows New Technology LAN Manager


Group Policy (GPO) :

Group policy allows admins to:
  • Enforce password rules
  • Disable USB ports
  • Set desktop wallpapers
  • Install software automatically
  • Lock down security settings and many more. 
GPOs are linked to:
  • Sites
  • Domains
  • OUs
GPO Processing order is LSDOU
  1. Local
  2. Site
  3. Domain 
  4. OU
LSDOU. It's group policy inheritance model, where the policies are applied to Local machines, Sites, Domains and Organizational Units.


Active Directory Structure

Forest

A forest is the top-level container.

  • Contains one or more domains
  • Shares a common schema
  • Trusts exist automatically

 Tree

A tree is a group of domains with:

  • Shared namespace
  • Automatic trust


Trusts

Trusts define how domains access each other.

Types:

  • One-way
  • Two-way
  • Transitive
  • External


AD Replication

  • DCs copy changes between each other
  • Uses multi-master replication
  • Based on sites and subnets

Key concepts:

  • Intra-site replication (fast)
  • Inter-site replication (compressed, scheduled)


FSMO Roles (Critical AD Roles)

There are 5 FSMO roles:

Forest-wide:

  1. Schema Master
  2. Domain Naming Master

Domain-wide:

  1. RID Master
  2. PDC Emulator
  3. Infrastructure Master

Why they matter:

  • Certain AD tasks require these roles
  • Losing them can break AD operations


Active Directory Security

Common Attacks:

  • Pass-the-Hash
  • Kerberoasting
  • Golden Ticket
  • DCSync

Best Practices:

  • Tiered admin model
  • Least privilege
  • Secure service accounts
  • Protect Domain Admins
  • Monitor logs regularly 


AD Modern Use & Azure Integration

Today, AD often works with:

  • Azure AD / Entra ID
  • Hybrid identity
  • SSO (Single Sign-On)
  • Cloud authentication

Tools Every AD Admin Uses

  • Active Directory Users and Computers (ADUC)
  • Group Policy Management Console (GPMC)
  • PowerShell (essential)
  • Event Viewer
  • ADSI Edit (danger zone)


Common AD Mistakes

  • Flat OU structure
  • Too many Domain Admins
  • Ignoring replication
  • Weak password policies
  • No documentation


Subscribe to My YouTube Channel: www.youtube.com/@Stack_Tech




Comments

Post a Comment

Popular posts from this blog

Desktop Support Interview Q&A (Beginner Level)

Image
1) What is active directory? Active directory authorizes and authenticates all users and computers in a window domain network, ensuring the security of the computer and software. Through active directory various functions can be managed like creating admin users, connecting to printers or external hard drives.   2) What is DHCP and what it is used for? DHCP stands for dynamic host configuration protocol. It is used to allocate IP addresses to a large number of the computer system in a network.   It helps in managing the large number of IPs very easily.   3) What is scope and super scope? Scope consists of an IP address like gateway IP, subnet mask, DNS server IP. It can be used to communicate with the other PCs in the network. The super scope becomes when you combine two or more scopes together.   4) What is DNS? DNS mean Domain Naming Service, and it is used for resolving IP addresses to name and names to IP address. DNS is like a translator for ...
Read more

IT Abbreviations Explained for Beginners | Most Asked in Interviews

Image
Important IT & computer-related words with their full forms — useful for S chool, College, Competitive Exams, and Interviews . COMPUTER - Common Operating Machine Purposely Used for Technological and Educational Research IT – Information Technology CPU – Central Processing Unit ALU – Arithmetic Logic Unit CU – Control Unit RAM – Random Access Memory ROM – Read Only Memory HDD – Hard Disk Drive SSD – Solid State Drive JPG/JPEG – Joint Photographic Experts Group PNG – Portable Network Graphics USB – Universal Serial Bus VDU – Visual Display Unit UPS – Uninterruptible Power Supply BIOS – Basic Input Output System CMOS – Complementary Metal Oxide Semiconductor CD – Compact Disc DVD – Digital Versatile Disc LED – Light Emitting Diode LCD – Liquid Crystal Display SMPS – Switched Mode Power Supply NIC – Network Interface Card GPU – Graphics Processing Unit OCR –...
Read more