Day 9

Question 1

Lightweight Directory Access Protocol (LDAP)

Answer 1

an open standard protocol for accessing object oriented databases.
LDAP defines how clients acess the directory server and perform database operations over an IP network.
Uses port 389

Question 2

LDAP encompasses 4 models:

Answer 2

the information model, naming model, functional model, security model

Question 3

information model

Answer 3

objects- most fundamental item in a directory
attributes- characteristics of objects
schema- set of rules or structure that defines objects
classes-logical grouping of objects
container- used for organizing objects, but cannot have ...........group policies linked directly to them
organizational unit (OU)- used for organizing objects ............and can have group policies linked to them
domains-contain OU's, containers, and objects
User Principal Name- May be used as user logon name .........for the domain.  Combines username and DNS ..........name; commonly used as an email address

Question 4

naming model

Answer 4

distinguished name (DN)--  full name--- contains the relative distinguished name (RDN) and location within the LDAP directory.
contains every piece after what is asked for.

Relative distinguished name (RDN) – Common Name– portion of the name that does not relate to the directory strucuture.
portion of the name that applies

Question 5

object class identifiers as defined in RFC-1777

Answer 5

DC- domain component
OU- Organizational Unit Name
CN- Common Name

Question 6

functional model

Answer 6

provides information that details what can be done with the database.

authentication—bind is the primary operation
Interrogation–search is the primary operation
update–add, modify, and delete

Question 7

security model

Answer 7

how directory information is protected

Question 8

active directory fundamentals

Answer 8

Active Directory is Microsoft’s implementation of LDAP directory services.

AD is contained in the %systemroot%\NTDS\Ntds.dit database file

Question 9

benefits of active directory

Answer 9

flexible querying
integration with DNS
extensibility
policy-based administration
scalability
replication
security
interoperability

Question 10

Domains

Answer 10

serve as boundries for authentication and policy

Question 11

domain controller

Answer 11

installing Active Directory on a Windows server makes it a domain controller

Question 12

member server

Answer 12

Window’s servers that do not have AD installed are called member servers

Question 13

replication

Answer 13

required when a domain has multiple domain controllers to maintain data conformity

Question 14

sites

Answer 14

used to represent the physical topology of the network

Question 15

Benefits of sites

Answer 15

Enables clients to efficiently discover services that are close

Enables network traffic control to optimize replication between domain controllers

Enables policy application

Question 16

Benefits of sites

Answer 16

Enables clients to efficiently discover services that are close

Enables network traffic control to optimize replication between domain controllers

Enables policy application

Question 17

forest

Answer 17

one or more domains sharing a common schema, where the first domain created is the forest’s root domain.
(a collection of tree’s)

Question 18

tree

Answer 18

consists of one or more domains that may be grouped together to form a hierarchical structure.
(a hierarchical collection of domains.)
child domains within a tree must have contiguous namespaces that build upon the parents

Question 19

domain controller ports

Answer 19

unsecure secure
kerberos 88 464
LDAP 389 636
global catalog 3268 3269

Question 20

member server ports

Answer 20

ftp control       21
SMTP              25
DNS                53
DHCP             67/68
HTTP              80

Question 21

workstation ports

Answer 21

RCP 135
NETBios 137, 138, 139
SMB 445

Question 22

trusts

Answer 22

a trust relationship established between domains to enable users in one domain to access resources in another domain

Question 23

type of trusts

Answer 23

transitive trusts

non-transitive trusts

Question 24

transitive trust

Answer 24

automatic
when domain A trusts domain B an ddomain B trusts domain C, then A can access resources in C if they have correct permissions

Question 25

non-transitive trusts

Answer 25

external trusts configured manually
forest- between two forests, manually created
shortcut- between two distant child domains; improves login
external- access between two active directory domains located in different forests

Question 26

domain wide queries

Answer 26

microsoft implements LDAP as Active directory, so when a client queries for resources within the domain, LDAP port 389 is used.

1. client queries DNS for LDAP SRV record.
2. once the LDAP service is identified, client connects to port 389

USER->DNS->SRV->LDAP

Question 27

forest-wide queries

Answer 27

requires a global catalog (GC)
uses port 3268 or 3269 (SSL)
GC is implemented on one or more domain controlers.
Uses distinguished names to identify the location of ………..every object in the forest.

Question 28

steps for a forest-wide query

Answer 28

1. client queries DNS for GC SRV record.
2. client connects to port 3268 or 3269. Connection is made to a domain controller running the GC service.

USER->DNS->SRV->GC

Question 29

domain login

Answer 29

adds 4 steps to the workstation login in

4. LSA uses kerberos.dll to send credentials to domain controller
5. domain controller lsass.exe uses kdcsvc.dll to verify credentials with AD
6. if credentials match, KDSVC.dll returns back to workstation.
7. workstation LSA creates AT

see chart on page 139 for full process

Question 30

kerberos

Answer 30

the primary authentication package used in Windows Domain (AD)
based on RFC 1510
uses port 88 on TCP and UDP

Question 31

advantages of kerberos

Answer 31

provides faster authentication

provides single sign-on between active directory systems

Question 32

Key Distribution Center (KDC)

Answer 32

domain controllers act as KDC’s. The LSA uses kdcsvc.dll to provide two main services, authentication service and ticket granting service

Question 33

authentication service (AS)

Answer 33

receives pre-authentication data, consctructs a ticket granting ticket and sends back to client

Question 34

Ticket Granting Ticket (TGT)

Answer 34

TGT is a ticket that enables secure transport of credentials between the KDC and the client.
lasts for 10 hours

Question 35

Ticket Granting Service (TGS)

Answer 35

TGS receives the TGT and session key from the client.

The TGS constructs a service ticket used for admission to the requested resource/service and returns to client

Question 36

Service Ticket (ST)

Answer 36

ST is used to authenticate with services other than TGS and is meant only for requested resource/service

Question 37

krbtgt account

Answer 37

krbtgt is the KDC account used to encrypt the TGT

Question 38

Session Key (SK)

Answer 38

password hash of the user account is used to encrypt the session key

Question 39

authentication service exchange

Kerberos AS Request (KRB_AS_REQ

Answer 39

1. AS_REQ ———–>

pre-authentication info

Question 40

kerberos AS Response (KRB_AS_REP)

Question 41

kerberos TGS Request (KRB_TGS_REQ)

Answer 41

TGS_REQ——–>

TGT+Service

Question 42

kerberos TGS Response (KRB_TGS_REP)