Welcome to Scribd, the world's digital library. Read, publish, and share books and documents. See more
Standard view
Full view
of .
Look up keyword
Like this
0 of .
Results for:
No results containing your search query
P. 1
Active Directory Data Store

Active Directory Data Store

Ratings: (0)|Views: 54 |Likes:
Published by kktamang09

More info:

Published by: kktamang09 on Apr 20, 2010
Copyright:Attribution Non-commercial


Read on Scribd mobile: iPhone, iPad and Android.
download as DOC, PDF, TXT or read online from Scribd
See more
See less





Active Directory data store, the actual database file, is %SystemRoot%\ntds\NTDS.DIT. The ntds.dit file is the heartof Active Directory including user accounts. ActiveDirectory's database engine is the Extensible StorageEngine ( ESE ) which is based on the Jet database used byExchange 5.5 and WINS. The ESE has the capability to growto 16 terabytes which would be large enough for 10 millionobjects. Back to the real world. Only the Jet database canmaniuplate information within the AD datastore.The Active Directory ESE database, NTDS.DIT, consists ofthe following tables:Schema tablethe types of objects that can be created in the ActiveDirectory, relationships between them, and the optional andmandatory attributes on each type of object. This table isfairly static and much smaller than the data table.Link tablecontains linked attributes, which contain values referringto other objects in the Active Directory. Take the MemberOfattribute on a user object. That attribute contains valuesthat reference groups to which the user belongs. This isalso far smaller than the data table.Data tableusers, groups, application-specific data, and any otherdata stored in the Active Directory. The data table can bethought of as having rows where each row represents aninstance of an object such as a user, and columns whereeach column represents an attribute in the schema such asGivenName.From a different perspective, Active Directory has threetypes of dataSchema informationdefinitional details about objects and attributes that oneCAN store in the AD. Replicates to all domain controllers.Static in nature.Configuration informationconfiguration data about forest and trees. Replicates toall domain controllers. Static as your forest is.Domain informationobject information for a domain. Replicates to all domaincontrollers within a domain. The object portion becomespart of Global Catalog. The attribute values (the actualbulk of data) only replicates within the domain.Although GUIDs are unique, they are large. AD usesdistinguished name tag ( DNT ). DNT is a 4-byte DWORD valuewhich is incremented when a new object is created in thestore. The DNT represents the object's database row number.It is an example of a fixed column. Each object's parentrelationship is stored as a parent distinguished name tag (PDNT ). Resolution of parent-child relationships isoptimized because the DNT and PDNT are indexed fields inthe database.The size of ntds.dit will often be different sizes acrossthe domain controllers in a domain. Remember that ActiveDirectory is a multi-master independent model where updatesare occuring in each of the ADs with the changes being

Activity (9)

You've already reviewed this. Edit your review.
1 hundred reads
saktheesh_mca252 liked this
Ramana Raju liked this
cal2010 liked this
shankar3 liked this
shankar3 liked this
Richard Wiltsie liked this
smamindl liked this
tahir7736 liked this

You're Reading a Free Preview

/*********** DO NOT ALTER ANYTHING BELOW THIS LINE ! ************/ var s_code=s.t();if(s_code)document.write(s_code)//-->