ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Anyway I can Learn AD?

    Scheduled Pinned Locked Moved IT Discussion
    active directory domainwindows administration
    82 Posts 10 Posters 10.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • scottalanmillerS
      scottalanmiller
      last edited by

      Remember, AD is a service like a web server. Microsoft AD is what most people use and is the original (kind of.) The only major competitor to Microsoft AD is Samba. Samba, since version 4, is also a full AD implementation and is every bit as much AD as MS AD is. One is not "more" AD than the other. One is just the first commercial implementation and the other is the second.

      1 Reply Last reply Reply Quote 1
      • DashrenderD
        Dashrender
        last edited by

        You can download the Server ISO from MS. You can then install it in a 180 day trial version on a VM anyplace you have the resources - they can build your own AD and do whatever you want to it.

        This is what I did way back when - setup AD and Novell at home to have things to learn on.

        1 Reply Last reply Reply Quote 1
        • IRJI
          IRJ
          last edited by

          AD is something you have to know if you want to step up to more of a system administration role, but its something that is fading out. AD will still be around for another 10 years, but adoption will only decrease going forward.

          I would do some AD training on Udemy or Youtube to get some basic knowledge as you do need it. However, I dont think its the most marketable skill to push you to the next level and make you stick out from the crowd. Nearly all IT people with any experience have some level AD experience.

          Office 365 / Intune is a better choice for system administrators going forward IMO. Its a skill that less people have in comparasion to AD so it will make you a bit more valuable if you can show competency in both. It will eventually replace AD / Exchange in environments.

          Once you master these areas, you can look towards more complex concepts like AWS and Azure.

          scottalanmillerS 1 Reply Last reply Reply Quote 1
          • scottalanmillerS
            scottalanmiller @IRJ
            last edited by

            @IRJ said in Anyway I can Learn AD?:

            AD is something you have to know if you want to step up to more of a system administration role, but its something that is fading out. AD will still be around for another 10 years, but adoption will only decrease going forward.

            Very true, I agree completely. Definitely a "need to know", but it's had a good 20 year run and isn't the "go to" solution that it once was.

            IRJI 1 Reply Last reply Reply Quote 1
            • IRJI
              IRJ @scottalanmiller
              last edited by

              @scottalanmiller said in Anyway I can Learn AD?:

              @IRJ said in Anyway I can Learn AD?:

              AD is something you have to know if you want to step up to more of a system administration role, but its something that is fading out. AD will still be around for another 10 years, but adoption will only decrease going forward.

              Very true, I agree completely. Definitely a "need to know", but it's had a good 20 year run and isn't the "go to" solution that it once was.

              Definitely not a good path for someone early in their career to focus on. As mentioned its a need to know, but not something I would spend alot of time on if I was early in my career. 90% of the IT market already has this skill so it doesnt help your marketability at all.

              1 Reply Last reply Reply Quote 1
              • WrCombsW
                WrCombs
                last edited by

                Thanks,
                I'll pick up a book,
                Scott how about the AD Learning environment?

                DashrenderD 1 Reply Last reply Reply Quote 0
                • ObsolesceO
                  Obsolesce @WrCombs
                  last edited by Obsolesce

                  @WrCombs said in Anyway I can Learn AD?:

                  A lot of jobs in the neighborhood here are requesting AD knowledge.

                  Does anyone know of a way I can start learning AD?

                  What is Active Directory?
                  how is it used? (I think I understand this on a basic level)
                  What would you suggest for getting started ?

                  What are best practices?

                  Start with YouTube IMHO:

                  Active Directory Tutorial for Beginners
                  Youtube Video

                  WrCombsW 1 Reply Last reply Reply Quote 0
                  • DashrenderD
                    Dashrender @WrCombs
                    last edited by

                    @WrCombs said in Anyway I can Learn AD?:

                    Thanks,
                    I'll pick up a book,
                    Scott how about the AD Learning environment?

                    I don't know that someone else's environment is worth it.

                    get the ISO and install it yourself. That way you get to start from the ground up.

                    WrCombsW 1 Reply Last reply Reply Quote 2
                    • WrCombsW
                      WrCombs @Dashrender
                      last edited by

                      @Dashrender said in Anyway I can Learn AD?:

                      @WrCombs said in Anyway I can Learn AD?:

                      Thanks,
                      I'll pick up a book,
                      Scott how about the AD Learning environment?

                      I don't know that someone else's environment is worth it.

                      get the ISO and install it yourself. That way you get to start from the ground up.

                      fair enough - I'll try that

                      1 Reply Last reply Reply Quote 0
                      • WrCombsW
                        WrCombs @Obsolesce
                        last edited by

                        @Obsolesce said in Anyway I can Learn AD?:

                        @WrCombs said in Anyway I can Learn AD?:

                        A lot of jobs in the neighborhood here are requesting AD knowledge.

                        Does anyone know of a way I can start learning AD?

                        What is Active Directory?
                        how is it used? (I think I understand this on a basic level)
                        What would you suggest for getting started ?

                        What are best practices?

                        Start with YouTube IMHO:

                        Active Directory Tutorial for Beginners
                        Youtube Video

                        That looks promising

                        1 Reply Last reply Reply Quote 0
                        • coliverC
                          coliver
                          last edited by

                          Honestly there really isn't much to AD that you will encounter on a day-to-day basis. A book may be overkill for it. The YouTube videos may be a good place to start but setting up an environment and using it will be the best way to learn.

                          DashrenderD IRJI 2 Replies Last reply Reply Quote 4
                          • DashrenderD
                            Dashrender @coliver
                            last edited by

                            @coliver said in Anyway I can Learn AD?:

                            Honestly there really isn't much to AD that you will encounter on a day-to-day basis. A book may be overkill for it. The YouTube videos may be a good place to start but setting up an environment and using it will be the best way to learn.

                            Without a book there are many aspects you'll never just bump into, especially in a small environment - like sites and domains and trusts - granted, is most SMB you won't bump into these much either (well sites might be something if you have multiple DCs in different locations)... I think a book is best to ensure a rounded view of AD.

                            scottalanmillerS 1 Reply Last reply Reply Quote 3
                            • ObsolesceO
                              Obsolesce @scottalanmiller
                              last edited by

                              @scottalanmiller said in Anyway I can Learn AD?:

                              @WrCombs said in Anyway I can Learn AD?:

                              What are best practices?

                              Some rules of thumb...

                              1. AD is never a foregone conclusion.
                              2. Never consider AD until you have at least 12 computers or users on your network (officially MS used to say 10, but that's absurdly low, 12 is more reasonable.)
                              3. Don't run any applications from your AD DC.
                              4. Never refer to an AD Domain Controller (DC) as a PDC or BDC, there is no such thing in the AD world and anyone using the term is very confused and is thinking of NT SAM from the 1990s which is unrelated.
                              1. Your entire AD network, everything in it, is not any more secure than your DC. Keep your DC locked down tight, as secure as possible. There are many guidelines. Check out Cqure.
                              WrCombsW 1 Reply Last reply Reply Quote 0
                              • WrCombsW
                                WrCombs @Obsolesce
                                last edited by

                                @Obsolesce said in Anyway I can Learn AD?:

                                @scottalanmiller said in Anyway I can Learn AD?:

                                @WrCombs said in Anyway I can Learn AD?:

                                What are best practices?

                                Some rules of thumb...

                                1. AD is never a foregone conclusion.
                                2. Never consider AD until you have at least 12 computers or users on your network (officially MS used to say 10, but that's absurdly low, 12 is more reasonable.)
                                3. Don't run any applications from your AD DC.
                                4. Never refer to an AD Domain Controller (DC) as a PDC or BDC, there is no such thing in the AD world and anyone using the term is very confused and is thinking of NT SAM from the 1990s which is unrelated.
                                1. Your entire AD network, everything in it, is not any more secure than your DC. Keep your DC locked down tight, as secure as possible. There are many guidelines. Check out Cqure.

                                DC= Domain Controller?

                                Anything i need to know about setting up a DC?

                                ObsolesceO DashrenderD 2 Replies Last reply Reply Quote 0
                                • WrCombsW
                                  WrCombs @scottalanmiller
                                  last edited by

                                  1. Never consider AD until you have at least 12 computers or users on your network (officially MS used to say 10, but that's absurdly low, 12 is more reasonable.)

                                  What would you use below 12 Devices ?

                                  Say for a Small mechanic shop running ~8 PC's (2 at the front desk, 5 in service bays, one in the bosses office, etc.)

                                  DashrenderD 1 Reply Last reply Reply Quote 0
                                  • ObsolesceO
                                    Obsolesce @WrCombs
                                    last edited by

                                    @WrCombs said in Anyway I can Learn AD?:

                                    @Obsolesce said in Anyway I can Learn AD?:

                                    @scottalanmiller said in Anyway I can Learn AD?:

                                    @WrCombs said in Anyway I can Learn AD?:

                                    What are best practices?

                                    Some rules of thumb...

                                    1. AD is never a foregone conclusion.
                                    2. Never consider AD until you have at least 12 computers or users on your network (officially MS used to say 10, but that's absurdly low, 12 is more reasonable.)
                                    3. Don't run any applications from your AD DC.
                                    4. Never refer to an AD Domain Controller (DC) as a PDC or BDC, there is no such thing in the AD world and anyone using the term is very confused and is thinking of NT SAM from the 1990s which is unrelated.
                                    1. Your entire AD network, everything in it, is not any more secure than your DC. Keep your DC locked down tight, as secure as possible. There are many guidelines. Check out Cqure.

                                    DC= Domain Controller?

                                    Anything i need to know about setting up a DC?

                                    At a basic level, it can be a single command. I'd just start with that video first, then go from there.

                                    WrCombsW 1 Reply Last reply Reply Quote 0
                                    • WrCombsW
                                      WrCombs @Obsolesce
                                      last edited by

                                      @Obsolesce said in Anyway I can Learn AD?:

                                      @WrCombs said in Anyway I can Learn AD?:

                                      @Obsolesce said in Anyway I can Learn AD?:

                                      @scottalanmiller said in Anyway I can Learn AD?:

                                      @WrCombs said in Anyway I can Learn AD?:

                                      What are best practices?

                                      Some rules of thumb...

                                      1. AD is never a foregone conclusion.
                                      2. Never consider AD until you have at least 12 computers or users on your network (officially MS used to say 10, but that's absurdly low, 12 is more reasonable.)
                                      3. Don't run any applications from your AD DC.
                                      4. Never refer to an AD Domain Controller (DC) as a PDC or BDC, there is no such thing in the AD world and anyone using the term is very confused and is thinking of NT SAM from the 1990s which is unrelated.
                                      1. Your entire AD network, everything in it, is not any more secure than your DC. Keep your DC locked down tight, as secure as possible. There are many guidelines. Check out Cqure.

                                      DC= Domain Controller?

                                      Anything i need to know about setting up a DC?

                                      At a basic level, it can be a single command. I'd just start with that video first, then go from there.

                                      Thanks

                                      1 Reply Last reply Reply Quote 0
                                      • DashrenderD
                                        Dashrender @WrCombs
                                        last edited by

                                        @WrCombs said in Anyway I can Learn AD?:

                                        @Obsolesce said in Anyway I can Learn AD?:

                                        @scottalanmiller said in Anyway I can Learn AD?:

                                        @WrCombs said in Anyway I can Learn AD?:

                                        What are best practices?

                                        Some rules of thumb...

                                        1. AD is never a foregone conclusion.
                                        2. Never consider AD until you have at least 12 computers or users on your network (officially MS used to say 10, but that's absurdly low, 12 is more reasonable.)
                                        3. Don't run any applications from your AD DC.
                                        4. Never refer to an AD Domain Controller (DC) as a PDC or BDC, there is no such thing in the AD world and anyone using the term is very confused and is thinking of NT SAM from the 1990s which is unrelated.
                                        1. Your entire AD network, everything in it, is not any more secure than your DC. Keep your DC locked down tight, as secure as possible. There are many guidelines. Check out Cqure.

                                        DC= Domain Controller?

                                        Anything i need to know about setting up a DC?

                                        He just told you - check out Cqure or google "securing a Windows Domain Controller"

                                        WrCombsW 1 Reply Last reply Reply Quote 0
                                        • WrCombsW
                                          WrCombs @Dashrender
                                          last edited by

                                          @Dashrender said in Anyway I can Learn AD?:

                                          @WrCombs said in Anyway I can Learn AD?:

                                          @Obsolesce said in Anyway I can Learn AD?:

                                          @scottalanmiller said in Anyway I can Learn AD?:

                                          @WrCombs said in Anyway I can Learn AD?:

                                          What are best practices?

                                          Some rules of thumb...

                                          1. AD is never a foregone conclusion.
                                          2. Never consider AD until you have at least 12 computers or users on your network (officially MS used to say 10, but that's absurdly low, 12 is more reasonable.)
                                          3. Don't run any applications from your AD DC.
                                          4. Never refer to an AD Domain Controller (DC) as a PDC or BDC, there is no such thing in the AD world and anyone using the term is very confused and is thinking of NT SAM from the 1990s which is unrelated.
                                          1. Your entire AD network, everything in it, is not any more secure than your DC. Keep your DC locked down tight, as secure as possible. There are many guidelines. Check out Cqure.

                                          DC= Domain Controller?

                                          Anything i need to know about setting up a DC?

                                          He just told you - check out Cqure or google "securing a Windows Domain Controller"

                                          yeah, but nothing about the initial set up, which is something I'll have to figure out.

                                          DashrenderD 1 Reply Last reply Reply Quote 0
                                          • DashrenderD
                                            Dashrender @WrCombs
                                            last edited by

                                            @WrCombs said in Anyway I can Learn AD?:

                                            1. Never consider AD until you have at least 12 computers or users on your network (officially MS used to say 10, but that's absurdly low, 12 is more reasonable.)

                                            What would you use below 12 Devices ?

                                            Say for a Small mechanic shop running ~8 PC's (2 at the front desk, 5 in service bays, one in the bosses office, etc.)

                                            This is the crux in my mind.

                                            Some will say - just use a NAS or some online storage solution - like OD or OD4B or NextCloud or Dropbox, etc.

                                            Have the users log in locally - or remove local logins completely, depending on your needed level of workstation security.

                                            Basically you'd set them up as a LANless setup - all security comes from the applications you use, not the workstation.

                                            1 Reply Last reply Reply Quote 2
                                            • 1
                                            • 2
                                            • 3
                                            • 4
                                            • 5
                                            • 4 / 5
                                            • First post
                                              Last post