Active Directory Diagram
HelpDesk
How to Create an Active Directory Diagram
Active Directory Diagrams
Active Directory Diagrams solution significantly extends the capabilities of ConceptDraw DIAGRAM software with special Active Directory samples, convenient template and libraries of Active Directory vector stencils, common icons of sites and services, icons of LDPA elements, which were developed to help you in planning and modelling network structures and network topologies, in designing excellently looking Active Directory diagrams, Active Directory Structure diagrams, and Active Directory Services diagram, which are perfect way to visualize detailed structures of Microsoft Windows networks, Active Directory Domain topology, Active Directory Site topology, Organizational Units (OU), and Exchange Server organization.
Active Directory
Active Directory Domain Services
"Microsoft Windows 2000 Server introduces Active Directory to replace domain functionality. Active Directory will continue to get the job done, but in a much more efficient way. Active Directory can be replicated between multiple domain controllers, so no single system is critical. In this way, the crucial data stored within Active Directory is both redundant and load-balanced.
A directory, in the most generic sense, is a comprehensive listing of objects. A phone book is a type of directory that stores information about people, businesses, and government organizations. Phone books typically record names, addresses, and phone numbers. Active Directory is similar to a phone book in several ways, and it is far more flexible. Active Directory will store information about organizations, sites, systems, users, shares, and just about any other network object that you can imagine. Not all objects are as similar to each other as those stored in the phone book, so Active Directory includes the ability to record different types of information about different objects." [technet.microsoft.com/ en-us/ library/ bb742424.aspx]
The AD diagram example "Active Directory structure diagram" was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
A directory, in the most generic sense, is a comprehensive listing of objects. A phone book is a type of directory that stores information about people, businesses, and government organizations. Phone books typically record names, addresses, and phone numbers. Active Directory is similar to a phone book in several ways, and it is far more flexible. Active Directory will store information about organizations, sites, systems, users, shares, and just about any other network object that you can imagine. Not all objects are as similar to each other as those stored in the phone book, so Active Directory includes the ability to record different types of information about different objects." [technet.microsoft.com/ en-us/ library/ bb742424.aspx]
The AD diagram example "Active Directory structure diagram" was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
Active Directory network diagram
This AD diagram example was redesigned from the picture "Asymmetric
encryption" from the book "Active Directory for Dummies".
"Asymmetric Encryption:
This scenario uses a public and private key pair that is associated with each other. With this type of encryption, one of the keys is used to encrypt the data in such a way that only the corresponding second key is capable of decrypting the information. ...
In asymmetric encryption, two different keys are involved in the process: one for encrypting the document and a different but related key for decrypting the document. The two keys are generated at the same time so that if a document is encrypted with one of the keys, only the second related key can decrypt the document. ... Typically, these keys are referred to as a private key and a public key. A private key is one that is generated for a particular user and is never shared with any other user or computer. A public key is typically one of the pieces of data that’s stored in a PKI certificate. Although this type of encryption creates a very secure way of sharing data, an added benefit is you knowing that a piece of data decrypted by using a particular user’s public key must have come from that user because no other user would have the private key the document was encrypted with."
[Steve Clines and Marcia Loughry, Active Directory® For Dummies®, 2nd Edition. 2008]
The Active Directory diagram example "Asymmetric encryption" was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
encryption" from the book "Active Directory for Dummies".
"Asymmetric Encryption:
This scenario uses a public and private key pair that is associated with each other. With this type of encryption, one of the keys is used to encrypt the data in such a way that only the corresponding second key is capable of decrypting the information. ...
In asymmetric encryption, two different keys are involved in the process: one for encrypting the document and a different but related key for decrypting the document. The two keys are generated at the same time so that if a document is encrypted with one of the keys, only the second related key can decrypt the document. ... Typically, these keys are referred to as a private key and a public key. A private key is one that is generated for a particular user and is never shared with any other user or computer. A public key is typically one of the pieces of data that’s stored in a PKI certificate. Although this type of encryption creates a very secure way of sharing data, an added benefit is you knowing that a piece of data decrypted by using a particular user’s public key must have come from that user because no other user would have the private key the document was encrypted with."
[Steve Clines and Marcia Loughry, Active Directory® For Dummies®, 2nd Edition. 2008]
The Active Directory diagram example "Asymmetric encryption" was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
Active Directory diagram
Active Directory Diagrams visualize the detail structures of the Microsoft Windows networks, Active Directory Domain topology, the Active Directory Site topology, the Organizational Units (OU), and the Exchange Server Organization. They are used to visually document the Microsoft Active Directory network detail structure for network designing, and for managing the control access to printers and files, the access and security, the traffic flow optimization in local and wide area nets, the network equipment maintenance and repair, the data backup, storage, and recovery.
The Active Directory diagram template for the ConceptDraw PRO diagramming and vector drawing software is included in the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
The Active Directory diagram template for the ConceptDraw PRO diagramming and vector drawing software is included in the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
Active directory diagram template
This example was drawn on the base of the Figure 2 illustrating the "Active Directory FAQ" from the website "Information Management Systems & Services" (IMSS) of the California Institute of Technology (Caltech) campus. [imss.caltech.edu/ node/ 412]
"By using the Active Directory® Domain Services (AD DS) server role, you can create a scalable, secure, and manageable infrastructure for user and resource management, and you can provide support for directory-enabled applications, such as Microsoft® Exchange Server. ...
AD DS provides a distributed database that stores and manages information about network resources and application-specific data from directory-enabled applications. Administrators can use AD DS to organize elements of a network, such as users, computers, and other devices, into a hierarchical containment structure. The hierarchical containment structure includes the Active Directory forest, domains in the forest, and organizational units (OUs) in each domain. A server that is running AD DS is called a domain controller." [technet.microsoft.com/ en-us/ library/ 9a5cba91-7153-4265-adda-c70df2321982]
The Active Directory Domain Services diagram example was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
"By using the Active Directory® Domain Services (AD DS) server role, you can create a scalable, secure, and manageable infrastructure for user and resource management, and you can provide support for directory-enabled applications, such as Microsoft® Exchange Server. ...
AD DS provides a distributed database that stores and manages information about network resources and application-specific data from directory-enabled applications. Administrators can use AD DS to organize elements of a network, such as users, computers, and other devices, into a hierarchical containment structure. The hierarchical containment structure includes the Active Directory forest, domains in the forest, and organizational units (OUs) in each domain. A server that is running AD DS is called a domain controller." [technet.microsoft.com/ en-us/ library/ 9a5cba91-7153-4265-adda-c70df2321982]
The Active Directory Domain Services diagram example was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
Active Directory hierarchical structure
Active Directory Domain
Network Diagramming Software for Network Active Directory Diagrams
Design Element: Active Directory for Network Diagrams
This Active Directory network diagram example depicts types of groups and people assignment rules.
Architecture groups in a Windows Active Directory 2003:
(1) The arrow indicates "may be a member of."
(2) Dotted: Functionality limited to Windows 2003 (without the Windows 2000 compatibility).
(3) Red: Setting possible, but not recommended.
It was drawn on the base of Wikimedia Commons file: AD2003.JPG. [commons.wikimedia.org/ wiki/ File:AD2003.JPG]
This file is licensed under the Creative Commons Attribution-Share Alike 3.0 Unported license. [creativecommons.org/ licenses/ by-sa/ 3.0/ deed.en]
The Active Directory network diagram example "Tree and Forest (Full Trust)" was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
Architecture groups in a Windows Active Directory 2003:
(1) The arrow indicates "may be a member of."
(2) Dotted: Functionality limited to Windows 2003 (without the Windows 2000 compatibility).
(3) Red: Setting possible, but not recommended.
It was drawn on the base of Wikimedia Commons file: AD2003.JPG. [commons.wikimedia.org/ wiki/ File:AD2003.JPG]
This file is licensed under the Creative Commons Attribution-Share Alike 3.0 Unported license. [creativecommons.org/ licenses/ by-sa/ 3.0/ deed.en]
The Active Directory network diagram example "Tree and Forest (Full Trust)" was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
Active Directory network diagram
---active-directory-network-diagram.png--diagram-flowchart-example.png)
"Microsoft Windows 2000 Server introduces Active Directory to replace domain functionality. Active Directory will continue to get the job done, but in a much more efficient way. Active Directory can be replicated between multiple domain controllers, so no single system is critical. In this way, the crucial data stored within Active Directory is both redundant and load-balanced.
A directory, in the most generic sense, is a comprehensive listing of objects. A phone book is a type of directory that stores information about people, businesses, and government organizations. Phone books typically record names, addresses, and phone numbers. Active Directory is similar to a phone book in several ways, and it is far more flexible. Active Directory will store information about organizations, sites, systems, users, shares, and just about any other network object that you can imagine. Not all objects are as similar to each other as those stored in the phone book, so Active Directory includes the ability to record different types of information about different objects." [technet.microsoft.com/ en-us/ library/ bb742424.aspx]
The AD diagram example "Active Directory structure diagram" was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
A directory, in the most generic sense, is a comprehensive listing of objects. A phone book is a type of directory that stores information about people, businesses, and government organizations. Phone books typically record names, addresses, and phone numbers. Active Directory is similar to a phone book in several ways, and it is far more flexible. Active Directory will store information about organizations, sites, systems, users, shares, and just about any other network object that you can imagine. Not all objects are as similar to each other as those stored in the phone book, so Active Directory includes the ability to record different types of information about different objects." [technet.microsoft.com/ en-us/ library/ bb742424.aspx]
The AD diagram example "Active Directory structure diagram" was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
Active Directory network diagram
This example was drawn on the base of the Figure 2 illustrating the "Active Directory FAQ" from the website "Information Management Systems & Services" (IMSS) of the California Institute of Technology (Caltech) campus. [imss.caltech.edu/ node/ 412]
"By using the Active Directory® Domain Services (AD DS) server role, you can create a scalable, secure, and manageable infrastructure for user and resource management, and you can provide support for directory-enabled applications, such as Microsoft® Exchange Server. ...
AD DS provides a distributed database that stores and manages information about network resources and application-specific data from directory-enabled applications. Administrators can use AD DS to organize elements of a network, such as users, computers, and other devices, into a hierarchical containment structure. The hierarchical containment structure includes the Active Directory forest, domains in the forest, and organizational units (OUs) in each domain. A server that is running AD DS is called a domain controller." [technet.microsoft.com/ en-us/ library/ 9a5cba91-7153-4265-adda-c70df2321982]
The Active Directory Domain Services diagram example was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
"By using the Active Directory® Domain Services (AD DS) server role, you can create a scalable, secure, and manageable infrastructure for user and resource management, and you can provide support for directory-enabled applications, such as Microsoft® Exchange Server. ...
AD DS provides a distributed database that stores and manages information about network resources and application-specific data from directory-enabled applications. Administrators can use AD DS to organize elements of a network, such as users, computers, and other devices, into a hierarchical containment structure. The hierarchical containment structure includes the Active Directory forest, domains in the forest, and organizational units (OUs) in each domain. A server that is running AD DS is called a domain controller." [technet.microsoft.com/ en-us/ library/ 9a5cba91-7153-4265-adda-c70df2321982]
The Active Directory Domain Services diagram example was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
Active Directory hierarchical structure
This AD diagram example was redesigned from the picture "Single root domain with a structured OU model" from the book "Active Directory for Dummies".
"A domain is the cornerstone that you lay whenever you create trees and forests. Regardless of whether you design a tree or a forest, the starting point is always the root domain. The root domain is the first domain that you create in your AD structure, and it sits at the top of your diagram.
The root domain of your tree, similar to any other domain, is a grouping of
resources built on the following components:
(1) Domain controllers.
(2) Security policies. ...
For many small and medium-sized companies, a single root domain with a
structured OU (organizational unit) model... provides sufficient flexibility for an AD tree. ...
However, larger companies, companies with complex organization charts, and
companies with multiple sites often find that a single domain isn’t suitable." [Steve Clines and Marcia Loughry, Active Directory® For Dummies®, 2nd Edition. 2008]
The Active Directory diagram example "Single root domain with a structured OU model" was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
"A domain is the cornerstone that you lay whenever you create trees and forests. Regardless of whether you design a tree or a forest, the starting point is always the root domain. The root domain is the first domain that you create in your AD structure, and it sits at the top of your diagram.
The root domain of your tree, similar to any other domain, is a grouping of
resources built on the following components:
(1) Domain controllers.
(2) Security policies. ...
For many small and medium-sized companies, a single root domain with a
structured OU (organizational unit) model... provides sufficient flexibility for an AD tree. ...
However, larger companies, companies with complex organization charts, and
companies with multiple sites often find that a single domain isn’t suitable." [Steve Clines and Marcia Loughry, Active Directory® For Dummies®, 2nd Edition. 2008]
The Active Directory diagram example "Single root domain with a structured OU model" was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
Active Directory network diagram
Active Directory Network. Computer and Network Examples
The vector stencils library "Active Directory Sites and Services" contains 12 symbol icons of Active Directory Sites and Services design elements for drawing high-level network topology plan diagrams.
"Active Directory® Sites and Services is a Microsoft Management Console (MMC) snap-in that you can use to administer the replication of directory data among all sites in an Active Directory Domain Services (AD DS) forest. This snap-in also provides a view of the service-specific objects that are published in AD DS. ...
Administrators who are responsible for forest-wide service administration can use Active Directory Sites and Services to manage the intersite replication topology for the forest. Administrators who are responsible for application services can be delegated responsibility for the service containers into which application-specific objects are published.
When you add the Active Directory Domain Services server role to a server, Active Directory Sites and Services is added to the Administrative Tools menu." [technet.microsoft.com/ en-us/ library/ cc730868.aspx]
The symbols example "Active Directory Sites and Services - Vector stencils library" was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
www.conceptdraw.com/ solution-park/ active-directory-diagrams
"Active Directory® Sites and Services is a Microsoft Management Console (MMC) snap-in that you can use to administer the replication of directory data among all sites in an Active Directory Domain Services (AD DS) forest. This snap-in also provides a view of the service-specific objects that are published in AD DS. ...
Administrators who are responsible for forest-wide service administration can use Active Directory Sites and Services to manage the intersite replication topology for the forest. Administrators who are responsible for application services can be delegated responsibility for the service containers into which application-specific objects are published.
When you add the Active Directory Domain Services server role to a server, Active Directory Sites and Services is added to the Administrative Tools menu." [technet.microsoft.com/ en-us/ library/ cc730868.aspx]
The symbols example "Active Directory Sites and Services - Vector stencils library" was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
www.conceptdraw.com/ solution-park/ active-directory-diagrams
Site or Subnet
Site Link
WAN
Site Link Bridge
Domain
Domain controller
Application
Database
Comm-link
Client
Replication connection, unidireactional
Replication connection, bi-directional
This AD diagram example was created based on the picture "AD LDS as a phone book service" from the book "Active Directory for Dummies".
"Directory services are a great way of providing information that can be fre-
quently retrieved and searched on in a hierarchical way. ... Well, there’s no reason that you can’t create a directory service that’s actually a phone book. Imagine that you need to make a searchable phone directory of your organization available on the Internet. ... This isn’t a difficult task, but it has security repercussions. If you’ve already deployed AD DS and you have the employees’ phone numbers available in that directory, it might not be a good idea to expose your AD DS environment to the Internet for security reasons. Using AD LDS is a great alternative because it can be deployed separately from AD DS and it’s designed to simply provide the information retrieval service that you need without the complications involved with Kerberos authentication and group policies." [Steve Clines and Marcia Loughry, Active Directory® For Dummies®, 2nd Edition. 2008]
The Active Directory diagram example "AD LDS as a phone book service" was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
"Directory services are a great way of providing information that can be fre-
quently retrieved and searched on in a hierarchical way. ... Well, there’s no reason that you can’t create a directory service that’s actually a phone book. Imagine that you need to make a searchable phone directory of your organization available on the Internet. ... This isn’t a difficult task, but it has security repercussions. If you’ve already deployed AD DS and you have the employees’ phone numbers available in that directory, it might not be a good idea to expose your AD DS environment to the Internet for security reasons. Using AD LDS is a great alternative because it can be deployed separately from AD DS and it’s designed to simply provide the information retrieval service that you need without the complications involved with Kerberos authentication and group policies." [Steve Clines and Marcia Loughry, Active Directory® For Dummies®, 2nd Edition. 2008]
The Active Directory diagram example "AD LDS as a phone book service" was created using the ConceptDraw PRO diagramming and vector drawing software extended with the Active Directory Diagrams solution from the Computer and Networks area of ConceptDraw Solution Park.
Active Directory network diagram
Network Diagram Template
- Active Directory Diagrams | Active Directory Domain Services | How ...
- Active Directory Diagram | How to Create an Active Directory ...
- Active Directory Domain Services Diagram
- Active Directory Diagram | Local area network (LAN). Computer and ...
- Active Directory Domain Services diagram | Active Directory diagram ...
- Ad Ou Structure - Active Directory Diagram
- Active Directory diagram - Site links | Site Plans | Bubble diagrams in ...
- Active Directory Domain Services | Network Diagram Examples ...
- Tree and Forest (Full Trust) - Active Directory network diagram ...
- Active Directory Diagram | Process Flowchart | Organizational ...
