Domain controller

Domain controller

On Windows Server Systems, a domain controller (DC) is a server that responds to security authentication requests (logging in, checking permissions, etc.) within the Windows Server domain.[1] A domain is a concept introduced in Windows NT whereby a user may be granted access to a number of computer resources with the use of a single username and password combination.

Contents

History

Windows NT

In older versions of Windows such as Windows NT server, one domain controller per domain was configured as the Primary Domain Controller (PDC); all other domain controllers were Backup Domain Controllers (BDC).

A BDC could authenticate the users in a domain, but all updates to the domain (new users, changed passwords, group membership, etc.) could only be made via the PDC, which would then propagate these changes to all BDCs in the domain. If the PDC was unavailable (or unable to communicate with the user requesting the change), the update would fail. If the PDC was permanently unavailable (e.g. if the machine failed), an existing BDC could be promoted to be a PDC.

Because of the critical nature of the PDC, best practices dictated that the PDC should be dedicated solely to domain services, and not used for file/print/application services that could slow down or crash the system. Some network administrators took the additional step of having a dedicated BDC online for the express purpose of being available for promotion if the PDC failed.

Windows 2000

Windows 2000 and later versions introduced Active Directory ("AD"), which largely eliminated the concept of primary and backup domain controllers in favor of multi-master replication.

However, there are still several roles that only one domain controller can perform, called the Flexible single master operation roles (some of these roles must be filled by one DC per domain, while others only require one DC per AD Forest). If the server performing one of these roles is lost the domain can still function, and if the server will not be available again, an administrator can designate an alternate DC to assume the role (a process known as "seizing" the role).

See also

References

External links


Wikimedia Foundation. 2010.

Игры ⚽ Поможем написать курсовую

Look at other dictionaries:

  • Domain Controller — Ein Domain Controller (DC, auch Domänencontroller) ist ein Server zur zentralen Authentifizierung und Autorisierung von Computern und Benutzern in einem Rechnernetz. Der Begriff wurde von Microsoft mit Windows NT eingeführt. In einem Netzwerk mit …   Deutsch Wikipedia

  • domain controller —    In Microsoft Windows NT, a server that stores and shares domain information, including the central database of users, passwords, and permissions.    A domain controller can be a primary domain controller, which stores the master copy of the… …   Dictionary of networking

  • Primary Domain Controller — A Primary Domain Controller (PDC) is a server computer in a pre Windows 2000 NT server Domain. A domain is a concept used in NT server operating systems whereby a user may be granted access to a number of computer resources with the use of a… …   Wikipedia

  • Read Only Domain Controller — Entwickler Microsoft Corp. Aktuelle Version stable Betriebssystem Windows Kategorie Server Lizenz …   Deutsch Wikipedia

  • Backup Domain Controller — Dieser Artikel oder Abschnitt ist nicht hinreichend mit Belegen (Literatur, Webseiten oder Einzelnachweisen) versehen. Die fraglichen Angaben werden daher möglicherweise demnächst gelöscht. Hilf Wikipedia, indem du die Angaben recherchierst und… …   Deutsch Wikipedia

  • Primary Domain Controller — Dieser Artikel oder Abschnitt ist nicht hinreichend mit Belegen (Literatur, Webseiten oder Einzelnachweisen) versehen. Die fraglichen Angaben werden daher möglicherweise demnächst gelöscht. Hilf Wikipedia, indem du die Angaben recherchierst und… …   Deutsch Wikipedia

  • primary domain controller —    In a Microsoft Windows NT domain, a computer running Windows NT Server that authenticates domain logons and manages the directory database for the domain. All changes to all accounts in the domain are automatically tracked and sent to the… …   Dictionary of networking

  • Backup Domain Controller — In Windows NT 4 server domains, the Backup Domain Controller (BDC) is a computer that has a copy of the user accounts database. Unlike the accounts database on the Primary Domain Controller (PDC), the BDC database is a read only copy. When… …   Wikipedia

  • backup domain controller —    In Microsoft Windows NT, a server containing accurate replications of the security and user databases.    The backup domain controller receives a copy of the domain s directory database, containing all the account and security information for… …   Dictionary of networking

  • Kerberos Domain Controller — Kerberos Domain Controller, механизм аутентификации внутри домена. Требуется для подключения к доменам Windows NT UNIX клиентов. Как правило, физическое расположение KDC совпадает с PDC …   Википедия

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”