Exam 70 297 Designing a Microsoft Windows Server
- Slides: 19
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure Goals v Examine OU designs v Design an OU structure for administration v Design an OU structure fore Group Policy application 9. 1 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 1) Examining OU Designs v Organizational unit (OU) designs v. Four basic styles v. Departmental v. Functional v. Physical v. Hybrid 9. 2 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 1) Examining OU Designs (2) v Departmental OU design v Arranges OUs by department or division; mirrors company’s structure v Typically single level, but can be multi-level v Advantages v. Simple, logical design v. Well-suited to delegating permissions and applying Group Policy based on company departments and divisions v Disadvantages v. Design does not include separation of accounts into their own OUs, making it hard to apply delegation solely to computer or user accounts 9. 3 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 1) Examining OU Designs (3) v Functional OU design v Organizes resources by function in the domain v Computer and user accounts typically separated into types v Advantage: Excellent for applying delegation and Group Policy based on function of computer and user accounts v Disadvantage: Difficult to apply Group Policy based on departments or divisions 9. 4 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 1) Examining OU Designs (4) v Physical OU design v Based on location of resources v Typically divides OUs into regions and then locations v Typically used as component of hybrid model v Advantage: Useful for applying delegation and Group Policy based on regional location v Disadvantage: Makes it difficult to apply delegation or Group Policy based on department/division or function 9. 5 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 1) Examining OU Designs (5) v Hybrid OU design v. Combines two or more elements of the previous designs v. Most common type of design v. Examples v. Departmental then physical v. Departmental then functional v. Departmental then physical then functional 9. 6 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 1) Figure 9 -1 Departmental OU design 9. 7 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 1) Figure 9 -2 Multi-level departmental OU design 9. 8 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 1) Figure 9 -3 Functional OU design 9. 9 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 1) Figure 9 -4 Physical OU design 9. 10 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 1) Figure 9 -5 Hybrid OU design (functional then departmental) 9. 11 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 1) Figure 9 -6 Hybrid OU design (departmental then functional) 9. 12 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 1) Figure 9 -7 Hybrid OU design (departmental then physical then functional) 9. 13 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 2) Designing an OU Structure for Administration v Using OUs to provide for delegation of control v Primary goal is to create a structure that allows you to delegate an OU or a group of OUs v Perform a detailed examination of proposed administrative model v Build an OU structure that conforms to the administrative structure as closely as possible v This makes delegation simple and administratively efficient 9. 14 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 2) Figure 9 -8 Example administrative model 9. 15 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 2) Figure 9 -9 OU structure for example administrative model 9. 16 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 3) Designing an OU Structure for Group Policy Application v Group Policy and OU design v. Design OU to follow Group Policy application needs v. This allows you to easily link policies without utilizing filtering, No Override, or Block Inheritance 9. 17 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 3) Figure 9 -10 Example OU based on administrative model 9. 18 © 2004 Pearson Education, Inc.
Exam 70 -297 Designing a Microsoft® Windows® Server 2003 Active Directory and Network Infrastructure Lesson 9: Planning the OU Structure (Skill 3) Figure 9 -11 Revised design for OU 9. 19 © 2004 Pearson Education, Inc.