Although seemingly technical, understanding of the security configuration of Active Directory is not so difficult. How would we not have the key to his house, be given to everyone in the society, he / she lives in. Also, the security of access to the IT infrastructure of an organization in the hands of each member of the organization. Although it was a gross example, but the idea behind it was enough justification to explain the relationship. Environments in the middle of the large organizations are very complex and every gap in the security of society can lead to accidents and require a huge extreme caution. But this can be avoided.

In many environments, provides access to the collection of accounts of individual users in security groups controlled. Then the access control will be in the organization of computer resources for these groups rather than set security for individual user accounts. Take the example of an IT environment of Microsoft Windows Server operating. Here Directory enters the scene as security groups used to raise the domain user accounts into a single common basis. Once this process is complete, while to grant or refuse access various computer resources. Computer resources such as portals, SharePoint and file server grants or denies access to different parameters.

When it comes to IT security through Active Directory, many boxes in a carton theory introduced. A security group can be selected, could become part of another security group. Whether it is common for access to a large group of users. This process could serve as nesting, are described ie a security group, a member of another security group. These groups are called nested security groups.

The disadvantage of nested security the problem of identifying nested groups could be. What is what and how? Another major safety problems with nested groups is that it is extremely difficult to know who has control over what will eventually say what the access. Normally this problem is increased when nested groups occur more than two levels. This is in part because it effectively to identify and manage nested groups and security tools, native Microsoft management group and then helping these groups.

together domain security group / strong> nesting site for purposes of access control can be useful if used carefully and can be problematic if used randomly.

What is the role of Active Directory security in the management of the entire IT security>

Active Directory heart of security audit and compliance reports in a Microsoft IT served basis. It includes the following aspects of computer security: ->

A. User Accounts domain organization
B. domain computer accounts
C.> Domain Security Groups

Strategies

-depth knowledge of security by the various partners to take appropriate measures to ensure that computer security is infallible. Measures during execution of the list of configuration of your computer: ->

1 Security Policies
second Good Tools Active Directory Reports
third The right measures of Active Directory Security Audit and can arise from management tools

Great

test reports if a person has the right understanding and knowledge of its configuration of active safety. The information from these reports can monitor a valuable resource for those who proactively assess, manage and enforce security.


Active Directory Security Audit