Active Directory Objects (Ou, Users and Groups) : Cblms On Computer System Servicing NC Ii Setup Server
Active Directory Objects (Ou, Users and Groups) : Cblms On Computer System Servicing NC Ii Setup Server
Active Directory Objects (Ou, Users and Groups) : Cblms On Computer System Servicing NC Ii Setup Server
1-3
LEARNING OBJECTIVES:
After reading this INFORMATION SHEET, STUDENT(S) MUST be able to:
Introduction
Active directory (AD) is not going to work solely without its objects, Objects are
everything live under AD. As stated in (Information sheet: Active Directory) objects are
the following, Users and groups, services (i.e. Emails), resources such printers, shared
folders.
OUs help to keep your objects organized, but also are used to control what your Users
can and can’t do (among the other things)
We’ll start off building a few OUs so our Users and Computer Accounts will have a
place to live.
• Geographically
• By function (Departments. etc.)
• But remember to KISS as much as you’re able to! Keep it Simple, Sysadmin.
• Allow AD to keep track and control the computers in your network. A computer
without an Account in AD can’t access the network –it’s security measure.
• It resides in OU’s which allow you to install software to all machines in OU at
once.
• When you are going to join a computer in your domain (you’ll need Admin level
credentials)
• A computer account is automatically created in AD.
OU vs Groups
OU’s keep your object organized and are used to control what users and computers
can and can’t do.
Groups are active directory objects that allow you to provide and deny access to
resources like printer folder en masse. Groups are residing in organizational unit.
3. At this point you should be able to see your domain. In our example we are
using the itsmeismael domain. Go ahead and expand your domain (click the +
sign).
6. We now have a new Organizational Unit in our Active Directory called CSS
Students.
1. After creating an Organizational Unit in your Active Directory, you are ready
to create your first group. Go ahead and select your OU and then right-click in
the blank area. Next, point to New and then select Group.
In this example we are going to name our group CSS User. We are also going to
leave the default selections for group scope is Global, and group type is
Security > click OK.
1. Open Server Manager open Roles click Open Active Directory Users and
expand the domain name (itsmeismael.com). Select the Organization Unit
(CS Students) where you want to create the new user account.
2. In the empty area, right-click select New and click User. You can also right-
click the OU and click New and select User to create new user account.
You can also add users by using DSADD command line option. IT allows you create
users using command prompt.
DSADD is a command-line option that will allow you to create users with commands.
Syntax:
dsadd user ”cn=Username,ou=OUName, dc=YOurndomain, dc=yoursuffix”
Example
dsadd user “itsmeuser, ou=CSSStudents, dc=css, dc=com”
If you are going to add users’ complete name use the following syntax.
dsadd user “itsmeuser, ou=CSSStudents, dc=css, dc=com “ –fn Ismael –ln
Balana –pwd css_2016 –mustpwd no
If you want fast and easy creation of users just use the following codes, but this time
you need type the codes using Notepad or any equivalent text editor.
1. Open notepad or notepad++ > then type an example shown below
Syntax:
dsadd user “cn=%1, ou=OUName, dc=YourDomain, dc=YourSuffix” –fn%2 –
ln%3 –pwd Password –mustchpwd yes
Example:
dsadd user “cn=%1, ou=CSSUsers, dc=itsmeismael, dc=com” –fn%2 –ln%3 –
pwd css_2016 –mustchpwd yes
3. Open command line, navigate to the directory where the script resides and type:
Syntax
addOUName username firstname lastname
1. In order to move existing accounts into a group, you need to hold down the Control
key and click the user or computer accounts that you want to move into that group.
In our example, I will type CSS Users and then click on the Check names button.
Once the name is verified and group name is found, the text will be underlined and
you can click the OK button to continue.
4. Now all of these accounts are part of our CSS Users group.
Supplies/Materials :
Assessment Method:
Demonstration, Observation
Feedback
Total Points
Total Items
The table shows the equivalent points that are used and show how they are calculated to
determine the grade point average (GPA), or index.
The highest equivalent points that trainer can give is 5 points per criterion and the lowest is 0. If
the trainee/learner accumulate scores with below two (2) grade point equivalent, she/he needs to
retake the whole given task.
5 Excellent
4 Very Good
3 Good
2 Average
1 Poor
0 Failure
https://www.howtogeek.com/99323/installing-active-directory-on-server-2008-r2/
https://blogs.technet.microsoft.com/activedirectoryua/2011/07/07/a-delegation-for-
this-dns-server-cannot-be-created-because-the-authoritative-parent-zone-cannot-be-
found-or-it-does-not-run-windows-dns-server/
cssnctwo.weebly.com
www.petri.com/creating-active-directory-quizlet.com/21167195/active-directory-
flporeshmcse.blogspot.com/2009/11
www.pluralsight.com/blog/tutorials/windo
www.reddit.com/r/sysadmin/comments/3k8mm
www.mustbegeek.com/create-user-account-i
www.suse.com/.../book_security/book_secu
www.sciencedirect.com/topics/computer-scdocs.microsoft.com/en-us/office365/enter
www.grouppolicy.biz/.../best-practices-gsupport.office.com/en-us/article/Video-
Oforums.spacebattles.com
ccsethiopia.com/product_training.html
www.termpaperwarehouse.com/essay-on/1-Re
www.slideshare.net/banzonburner1/for-pri
www.baruch.cuny.edu/confluence/display/.
CBLMs on Computer Document No.
System Servicing NC II Version 1.1.2019
Developed by
Ismael Manic Balana Page
Setup Server
26
Revision # 01
blog.netwrix.com/2018/06/19/how-to-add-adocs.microsoft.com/en-us/ -versions