[ Pobierz całość w formacie PDF ]

that can be included in
Copyright 2003 Syngress Publishing, all rights reserved 55
DNS and Active Directory
Structural and Abstract classes.
Structural: True object class
that will enable new objects to
be created within Active
Directory.
There is one class type from
the 1988 X.500 definition: 88.
88 does not have the same
structure as the other classes,
and is not available within
Active Directory.
Follow these steps to create a new class in the Schema Manager console:
1. Right-click the Classes Node in the Schema Manager.
2. In the pop-up menu, click Create Class&
3. A warning will appear, as shown below. Click Continue to bypass it.
4. In the Create New Schema Class dialog box illustrated below, complete the information, and
click Next to continue.
Create New Schema Class Dialog
5. In the next dialog, you can select the attributes that will be part of this class. Add any
attributes that an administrator must fill out when creating one of the instances of this object
to the Mandatory section by clicking Add next to the section and selecting the attributes. Add
any discretionary attributes to the Optional section by clicking Add next to the Optional
section. You do not need to add any attributes, although some will be added by default.
56 Copyright 2003 Syngress Publishing, all rights reserved
How to Cheat&
Adding Attributes to a New Class
6. Click Finish to create the object.
7. Expand the Classes node by clicking the plus sign to its left in the scope pane.
8. Under the Classes node, locate the new object and select it. The Results pane will display all
the attributes that were added, along with many that are automatically defaults of that type of
class. The attributes that are inherited are displayed with the name of the parent class in the
Source Class column. These are shown below.
Copyright 2003 Syngress Publishing, all rights reserved 57
DNS and Active Directory
New Class Object and Default Attributes
Once a class has been created, it can be modified by right-clicking the class and selecting
Properties. The resulting dialog allows the administrator to change the selected attributes, the
description, the possible superiors, and security. It also lets the administrator deactivate the object or
enable it to be browsed in Active Directory by checking the boxes for these options on the General tab,
which is shown here. Note that some of the properties are grayed out, and therefore cannot be changed.
These include the Common Name, the X.500 Object Identifier, and the Class Type.
58 Copyright 2003 Syngress Publishing, all rights reserved
How to Cheat&
Class Properties
Inheritance occurs when one object class is designated as a parent to another. This designation
enables the attributes of that parent class to flow down to the child class. For example, when making a
new class a child of a User class, all the attributes of Users will be available as part of the new class. To
change the inheritance of the object or the attributes that it uses by default, select the Relationship tab.
Click Add next to Auxiliary classes in order to select a list of attributes that should be included in this
class. Then select an Auxiliary class from the list of available schema objects and click OK. The new
attributes will be added to the defaults in the results pane when you are finished.
To add the inheritance from parent classes, click Add next to the Possible Superiors box, and
Add a class from the list that appears. After clicking OK for either of these operations, the possible
superior s or auxiliary class s X.500 Object Identifier will appear in the window.
To select or deselect attributes for the class, click the Attributes tab, which is shown below. You
cannot add or remove any Mandatory attributes, but you are able to add or remove Optional attributes,
even if they were added during the object s creation. The process is the same as during the creation of the
class.
Copyright 2003 Syngress Publishing, all rights reserved 59
DNS and Active Directory
Adding Attributes After Class Creation
Deactivating an Object Class
The objects in the original Active Directory schema cannot be deactivated; however, those that are
added later can be. Deleting a schema object is not supported by Active Directory because of the [ Pobierz całość w formacie PDF ]
  • zanotowane.pl
  • doc.pisz.pl
  • pdf.pisz.pl
  • qus.htw.pl





    • Pokrewne

    © Copyright W strachu zaglÄ…daliÅ›my w siebie nawzajem tak gÅ‚Ä™boko, jak nie wolno byÅ‚o tego robić.

    Layout by Rocket Website Templates