Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Mastering Active Directory Understand the Core Functionalities of Active Directory Services Using Microsoft Server 2016 and PowerShell

Product type Paperback

Published in Jun 2017

Publisher Packt

ISBN-13 9781787289352

Length 742 pages

Edition 1st Edition

Languages

PowerShell

Tools

Active Directory Domain Services

Concepts

System Administration

Author (1):

Dishan Francis

View More author details

Table of Contents (20) Chapters

Preface

1. Active Directory Fundamentals FREE CHAPTER

2. Active Directory Domain Services 2016

3. Designing Active Directory Infrastructure

4. Active Directory Domain Name System

5. Placing Operations Master Roles

6. Migrating to Active Directory 2016

7. Managing Active Directory Objects

8. Managing Users, Groups, and Devices

9. Designing the OU Structure

10. Managing Group Policies

11. Active Directory Services

12. Active Directory Certificate Services

13. Active Directory Federation Services

14. Active Directory Rights Management Services

15. Active Directory Security Best Practices

16. Advanced AD Management with PowerShell

AD management with PowerShell – preparation

17. Azure Active Directory Hybrid Setup

18. Active Directory Audit and Monitoring

19. Active Directory Troubleshooting

Best practices

Here we will look into some of the best practices that can be used to manage AD object:

Housekeeping: It is important to review the validity of AD objects from time to time. There can be objects no longer active in operations. They can be computer objects, group objects, or user objects. There are several ways to handle these types of objects:
- If it's possible to verify objects are not in use for 100% of the time, objects can be completely deleted from the AD.
- If it's not possible to confirm, the object can be disabled and monitored for events. If there no events occur based on the action, it can be removed from the AD after sometime.

In order to manage disabled objects, it is advised to create a different OU and move the disabled objects to that. This will allow us to keep track of them and allow easy access when required.

In AD, there can be objects...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

Dishan Francis

Dishan Francis is an IT professional with over 15 years of experience. He was a six-time Microsoft MVP in enterprise mobility before he joined Microsoft UK as a security consultant. He has maintained the RebelAdmin technology blog over the years, with lots of useful articles that focus on on-premises Active Directory services and Azure Active Directory. He has also written for other Microsoft-managed blogs such as canitpro and ITopsTalk. When it comes to managing innovative identity infrastructure solutions to improve system stability, efficiency, and security, his level of knowledge and experience places him among the very best in the field.

See other products by Dishan Francis