G

Gateway for NFS configuring, 939 integrating in DFS, 941 LAN, creating new, 939-941 GC (Garbage Collection) facility, 102 GC (global catalog) AD, 48

described, 310-312 locator services, 312-313 servers, deploying, 327

GDI (Graphical Device Interface), 8 generation system of rotation, 739 GENESIS domain described, 347-348 health and security, 348-349 network specifics, 348 physical location, 348 site object specifics, 348 subnet object specifics, 348 geographical naming structure, 250 GFS (Grandfather, Father, Son) backup system, 739 global catalog (GC) AD, 48

described, 310-312 locator services, 312-313 servers, deploying, 327 global groups, 429, 430 GPC (GP Container), 467 GPDC (Group Policy Administration Domain

Controller), 327 GPE (Group Policy Editor), 13, 460-462 GPOE or GPE (Group Policy Object Editor), 13, 460-462 GPT (GP Template), 467-468 GPT (GUID Partition Table) described, 683 disks, 685-686 MBR, advantages over, 883 primary partitions, 688 remote access control, 949 gpt.ini file (root folder, GP Template), 468 Grandfather, Father, Son (GFS) backup system, 739 Graphical Device Interface (GDI), 8 Group Policy

Active Directory containers, 465 application, 469-472 architecture account lockout policy, 490-491 audit policy, 491-494 base policies, listed, 487-488 Domain Admins, locking down, 495-497 event log settings, required, 494-495 password policy, 489-490 attack plan, 480 components, listed, 464 computer account, 480-481 computer as target of, 478-479

computer configuration and user configuration, 466

default policy, rejecting, 479-480 delegating control, 472-473 described, 450, 468-469 editor, 465-466 elements, 464-466 explain text, 465 filtering policy, 472 GP links, 465 GPO, 465

local GPOs and domain-bound GPOs, 469

loopback, 473

management from development to production, 484 limitations, 483-484

maintenance and change control, 484-485 planning and troubleshooting with RSoP, 485-486 policy, 465 processing asynchronous or synchronous processing streams, 474 described, 473

domain controllers, specifying, 476-477 low bandwidth, 475 merge mode, 473-474 optional, 475 refresh rate, 474-475 replace mode, 474 security at local GPOs, 473 security policies, 478 software policies, 477-478 types, 463-464 Group Policy Administration Domain Controller (GPDC), 327

Group Policy Creator Owners security group, 386 Group Policy Editor (GPE), 13, 460-462 Group Policy Object Editor GPOE or GPE, 13, 460-462 groups

Active Directory Users and Computers MMC,

408-409 complexity of managing, 403 creating, 435-436 described, 405-406

distribution, 428

domains in native mode, need for, 441

elements, 431-432

managing access and privileges, determining, 446 caution about, 444 changes, minimizing, 447 delegating, 447

delegating responsibility, 443-444 described, 438, 442-443

gatekeeper local groups, protecting resources and lessening loads with, 446 security level, 446 TCO, 445 on member servers, 434 nesting, 434-435

network from viewpoint of, 407-408 OUs versus, 407 predefined, installing, 432-434 Properties dialog box General tab, 436, 437 Managed By tab, 437 Member Of tab, 437 Members tab, 437 requests for new, refusing, 445 resources visible to cluster members, 813 rights and permissions described, 438-439 logon, 441 privileges, 439-440 SAM and LSA authentication, 415-416 scope, 429-431 security, 414-415, 428 SID, 415

users, adding, 437-438 guests privileges, 433 security group, 385 user account, 413-414 GUID Partition Table (GPT) described, 683 disks, 685-686 MBR, advantages over, 883 primary partitions, 688 remote access control, 949

Was this article helpful?

0 0

Post a comment