5.1. Object Essentials

According to Microsoft, an object is a distinct and named entity in the network infrastructure that has its own set of attributes and elements. There are many different types of objects:

  • Users

  • Computers

  • Printers

  • Contacts

  • Groups

  • Shared folders

  • Domain controllers

  • Organizational units

  • inetOrgPersons

  • MSMQ queue aliases

Within Active Directory, each of these objects can be assigned various permissions through the use of access control lists. Permissions are binary in nature; that is, something is either allowed or not allowed.

And beyond each permission, every object is assigned an object owner, who can control how each of these permissions are set, along with administrators with control levels higher than the object owner. Furthermore, ...

Get MCITP: Windows Server® 2008 Enterprise Administrator, Study Guide now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.