Intro
activeDirectoryDomainServices is a data store that is used with Windows Servers, stores objects (mostly accounts)
Usages
- AD DS stores things such UserObjects and their attributes such their username, real name, email, department, password..etc.
- Usernames and passwords are used for the authentication
- There are some hidden attributes such as Globally Unique Identifier GUID and the Security Identifier SID
- AD also stores Computers and their IDs and when they’re logged in
- Groups are well groups of users or computers or groups of either
- Group Policy Objects store policies on what computers and users can do (authorization)
- Global Catalogue stores everything and therefore allows global search functions
Tickets
- Kerberos tickets are issued for users when logging in (what are they though?)