Chapter 10. Active Directory structure

This chapter covers

Working with Organizational Units
Administering Group Policies
Protecting objects from accidental deletion
Restoring deleted Active Directory objects

In chapter 5, we looked at user accounts and groups in Active Directory. This is the most volatile data in Active Directory, but it has the least impact on our Active Directory as a whole. Figure 10.1 shows a three-layer view of Active Directory. At the bottom we find data that changes slowly such as sites, site links, and domain controllers. Though these items don’t change often, they can have a huge impact on Active Directory, and the user population, if things go wrong. We’ll be looking at how to administer this layer in chapter 11.

Figure 10.1. Frequency of change to Active Directory objects. The topology changes slowly, but changes can have a large impact. The structure changes more rapidly but tends to have less of an impact. User data changes most frequently, but has the least impact on the directory as a whole.

Chapter 10. Active Directory structure

This chapter covers

Figure 10.1. Frequency of change to Active Directory objects. The topology changes slowly, but changes can have a large impact. The structure changes more rapidly but tends to have less of an impact. User data changes most frequently, but has the least impact on the directory as a whole.

10.1. Automating Active Directory administration

10.2. Schema

10.3. Organizational units

10.4. Group Policies

10.5. Protection and recovery

10.6. Summary