Professional Documents
Culture Documents
Section #4 (WIn ACL)
Section #4 (WIn ACL)
control
Done by:
Gehad Mohamed
Table of contents
Active Directory stores and manage objects that represent common entities: such as user
accounts or computers.
Domain
Root Domain
Sub-Domain Sub-Domain
1. Install Active Directory
1. In Server Manager, from Manage menu open Add Roles ans Features
2. Select Role-based installation then next
3. Select Active Directory Domain Service then next.
4. Finally start the installation.
2. Post-Installation configuration
1. In Server Manager, from Tools menu open Active directory Users and Computers
2. Expand bfcai.com domain node
3. Right-click bfcai.com domain node, select New, and then select Organization Unit.
Finally name it.
Note: OU can have a Group Policy Object linked to it, while container can’t.
4. Right-click ITAdmins ou, select New, and then select user.
3. Manage groups
1. In Server Manager, from Tools menu open Active directory Users and Computers
2. Expand bfcai.com domain node
3. Right-click ITAdmins ou, select New, and then select group and name it.
4. Add InfoSec user to account to the new group
4. Manage computers
1. In Server Manager, from Tools menu open Active directory Users and Computers
2. Expand bfcai.com domain node
3. Right-click Computers , select New, and then select Computer; name it, and define it’s
user.
4. Use “get–adcomputer –filter * | out-file C:\coputers.txt” to generate a report of all
computers in the domain.
1
3
5. Modify an existing GPO
Group Policy is a powerful tool enabling custom user and computer settings to be
deployed to objects across Active Directory.
Note: When using Default Domain Policy Password settings apply to all domain members
Thanks