|
Home > Archive > 70-217 > March 2002 > Just a quickie
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
|
|
| CyberDude 2002-03-25, 1:44 pm |
| If you have a domain which has OU's and nested OU's, what is the RDN?
Is it? user.ou.ou.domain.tld
or will it just be? user.domain.tld | |
| KScheler 2002-03-25, 2:43 pm |
| I pulled the below from the W2k server help file. Hope this helps.
Each object in Active Directory can be referenced by several different names. Active Directory creates a relative distinguished name and a canonical name for each object based upon information that was provided when the object was created or modified. Each object can also be referenced by its distinguished name, which is derived from the relative distinguished name of the object and all of its parent container objects.
The LDAP relative distinguished name uniquely identifies the object within its parent container. For example, the LDAP relative distinguished name of a computer named my computer is CN=mycomputer.
The LDAP distinguished name is globally unique. For example, the distinguished name of a computer named mycomputer in the MyOrganizationalUnit organizational unit in the microsoft.com domain is CN=mycomputer, OU=MyOrganizationalUnit, DC=microsoft, DC=com.
The canonical name is constructed the same way as the distinguished name, but it is represented using a different notation. The canonical name of the computer in the previous example would be Microsoft.com/MyOrganizationalUnit/mycomputer. | |
| TW2001 2002-03-26, 3:50 am |
| The RDN is the unique name.
eg. Cdude
eg. Printer1
The DN is the domain and related containers.
eg. RDN + OU + OU + DC
eg. Cdude@exams.notes.examnotes.net
The UPN (use principal name) references the account located in the domain.
eg Account(user) + DC
eg. Cdude@examnotes.net
AD is all about the namespace.Name resolution converts the NS locator to the specific object.The whole enterprise is reliant upon the AD`s ablity to indentify and locate people,resources,objects.
Got it? | |
| CyberDude 2002-03-26, 4:12 am |
| So I can use just the RDN or if I wish the FQDN?
Does DC stand for Domain Container? | |
| TW2001 2002-03-26, 6:11 am |
| DC = Domain Component
Active Directory uses RDNs to allow querying of the directory by object type, allowing users to search objects when the DN is not exactly known.Its for the users to make it easier and the dirctory hierachy transperent.So i guess the answer to your question is yes.Im just not sure exactly what you want to do.I also think you may be confusing the AD namespace (directory) with the AD DNS namespace.
? | |
| CyberDude 2002-03-26, 2:03 pm |
| I was just thinking that all objects have a name, but what string do you need to use for its context. I know DNS uses all domain names as its FQDN, so I was just wondering if AD did the same, with its objects aswell, or is it like dns and just uses the domain components.
In NDS your full context would be username.ou.ou.org.root | |
| jeff_j_black 2002-03-26, 7:33 pm |
| Hosts have FQDN's. The hostname plus the domain name is the FQDN.
Relative distinguished name means relative to the context that it is in. Your Distinguished name is CN=CyberDude, OU=Users, DC=Examnotes, DC=com.
If we are talking in the context of the Users OU, in Examnotes.com, your RDN is CN=CyberDude. But to reference you from jeffs.homelab.com, we would need your full distinguished name to know who and where you are. That's why you could have two different cyberdudes in two different OU's in the same domain.
UPN's are User Principle Names, in the format of cyberdude@examnotes.com. UPN's must be unique to a domain. So CN=Cyberdude, OU=Users, DC=Examnotes, DC=com and CN=CyberDude, OU=OtherUsers, DC=Examnotes, DC=com, could coexist if they had UPN's like cyberdude@examnotes.com and othercyberdude@examnote
s.com.
I might be missing something, but it seems as though your question is trying to run these all together, when it seems to me that they are all sorta different. | |
| CyberDude 2002-03-27, 2:23 am |
| Thats just it, I am getting all messed up with this.  | |
|
|
|
|
|