Security
The Windows 2000 security model is fully integrated with Active Directory. Access control can be defined in every object and property in the directory. With Active Directory, you can provide both the store and the scope of application for security policies. A security policy can be applied for a severity of setting, such as restrictions on the desktop of the user or domainwide password policy.
In Active Directory, every object has a security descriptor with permissions to gain access to the object and an indication of the type of access granted. To better deploy your security strategy, you can group objects with the same security into an organizational unit (OU) and assign the permissions to that OU.
In Active Directory, every object ...
Get Microsoft® Windows® 2000 Security Handbook now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
