Finding Additional Resources for Logical Structure Design
Applies to: Windows Server 2022, Windows Server 2019, Windows Server 2016, Windows Server 2012 R2, Windows Server 2012
You can find Additional Resources for Logical Structure Design in the following documentation about Active Directory Domain Services (AD DS):
For more information about designing the site topology, see Designing the Site Topology for Windows Server 2008 AD DS.
For worksheets to assist you in documenting the proposed forest, domain, Domain Name System (DNS) infrastructure, and organizational unit (OU) design, download Job_Aids_Designing_and_Deploying_Directory_and_Security_Services.zip from Job Aids for Windows Server 2003 Deployment Kit.
For more information about delegated authentication and constrained delegation, see Delegating authentication.
For more information about configuring firewalls for use with AD DS, see Active Directory in Networks Segmented by Firewalls.
For more information about upgrading Active Directory domains to Windows Server 2008, see Upgrading Active Directory Domains to Windows Server 2008 and Windows Server 2008 R2 AD DS Domains.
For more information about restructuring AD DS domains within and between forests, see ADMT Guide: Migrating and Restructuring Active Directory Domains.
For more information about deploying a forest root domain, see Deploying a Windows Server 2008 Forest Root Domain.
For more information about deploying DNS, see Deploying Domain Name System (DNS).
For more information about the DNS hierarchy and name resolution process, see the DNS Technical Reference.
For more information about how DNS supports AD DS, see the DNS Support for Active Directory Technical Reference.
For more information about WINS, see the WINS Technical Reference.
For more information about creating a disjoint namespace, see Create a Disjoint Namespace.
For more information about setting Service Principal Names (SPNs), see Service Logons Fail Due to Incorrectly Set SPNs.
For more information about how to delegate permissions to modify SPNs to subordinate administrators, see Delegating Authority to Modify SPNs.
For more information about domain controller certificate requirements, see article 321051 in the Microsoft Knowledge Base, How to enable LDAP over SSL with a third-party certification authority.
For more information about Lightweight Directory Access Protocol (LDAP) over Secure Sockets Layer (SSL) (LDAPS) authentication for Windows Server 2003, see article 938703 in the Microsoft Knowledge Base, How to troubleshoot LDAP over SSL connection problems.
For more information about Group Policy infrastructure, see Designing a Group Policy Infrastructure.
For more information about read-only domain controllers (RODCs), see AD DS: Read-Only Domain Controllers.
For more information about fine-grained password and account lockout policies, see the AD DS Fine-Grained Password and Account Lockout Policy Step-by-Step Guide.
For more information about naming conventions in AD DS, see article 909264 in the Microsoft Knowledge Base, Naming conventions in Active Directory for computers, domains, sites, and OUs.
Feedback
https://aka.ms/ContentUserFeedback.
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see:Submit and view feedback for