Domain controller

A domain controller (DC) is a server computer[1][2] that responds to security authentication requests within a computer network domain. It is a server on a network that is responsible for allowing host access to domain resources. It authenticates users, stores user account information and enforces security policy for a domain.[3] It is most commonly implemented in Microsoft Windows environments (see Domain controller (Windows)), where it is the centerpiece of the Windows Active Directory service. However, non-Windows domain controllers can be established via identity management software such as Samba and Red Hat FreeIPA.

Software

The software and operating system used to run a domain controller usually consists of several key components shared across platforms. This includes the operating system (usually Windows Server or Linux), an LDAP service (Red Hat Directory Server, etc.), a network time service (ntpd, chrony, etc.), and a computer network authentication protocol (usually Kerberos.[4] Other components, such as a public key infrastructure (Active Directory Certificate Services, DogTag, OpenSSL) service and Domain Name System (Windows DNS or BIND) may also be included on the same server or on another domain-joined server.

Implementation

Domain controllers are typically deployed as a cluster to ensure high-availability and maximize reliability. In a Windows environment, one domain controller services as the Primary Domain Controller (PDC) and all other servers promoted to domain controller status in the domain server as a Backup Domain Controller (BDC).[5] In Unix-based environments, one machine serves as the master domain controller and others serve as replica domain controllers, periodically replicating database information from the main domain controller and storing it in a read-only format.[6]

gollark: Yep!
gollark: It's *some digits of* Tau.
gollark: This is a highly serious application.
gollark: Do they NEED to uninstall it, though? Really? REALLY?
gollark: Er, they are, you used "people" in defining them.

See also

References
  1. "Domain Controller Roles". Microsoft TechNet. Retrieved Dec 4, 2009.
  2. "Domain Controller Roles". Windows Server 2003 Technical Reference. Microsoft TechNet. 2010-06-03. Retrieved 2012-11-21.
  3. "14.3.3. Domain Controller". access.redhat.com.
  4. "Chapter 1. Introduction to FreeIPA". docs.fedoraproject.org.
  5. "Domain Controller Roles". Microsoft Tech net 3 June 2010. Retrieved 13 February 2011.
  6. "V4/Replica Setup - FreeIPA". www.freeipa.org.
This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.