Inside Windows® Server 2003

Overview of Active Directory Security

Just as a quick review of Chapter 11, “Understanding Network Access Security and Kerberos,” let's go over the key elements of authentication and authorization in Window Server 2003:

A security principal is a user, computer, or group that needs to access a resource either on a local computer or on a server.
The primary means of authenticating a security principal is Kerberos. Legacy NTLMv2 (NT LanMan version 2) and LM (LanMan) authentication is available for supporting downlevel clients.
Authenticated security principals receive a Privilege Access Certificate (PAC) that contains their security information. The PAC includes the principal's Security ID (SID) along with the SIDs for any groups that have the security ...

Get Inside Windows® Server 2003 now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Inside Windows® Server 2003 by William Boswell

Overview of Active Directory Security

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly