IT Baseline Protection Manual - The Information Warfare Site
19.12.2012 Views
Share Embed Flag

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

SHOW MORE
SHOW LESS
ePAPER READ
DOWNLOAD ePAPER
iwar.org.uk

You also want an ePaper? Increase the reach of your titles

YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.

START NOW

Safeguard Catalogue - Organisation Remarks<br />

____________________________________________________________________ .........................................<br />

<strong>The</strong> following domain models can be implemented:<br />

a) Single-domain model<br />

This is the simplest domain model, as it only involves the existence of one<br />

domain in a network. Consequently, it is not necessary to manage trust<br />

relationships. In this case, only one SAM database exists for management<br />

purposes in the entire network. One variant of this model consists of a<br />

configuration of several individual domains in a network, between which no<br />

trust relationships are defined. In this case, each domain manages its own<br />

SAM database as well as user and group accounts. <strong>The</strong> single-domain model<br />

is particularly suitable for networks with a low number of users (approx. 200<br />

to 300) and computer nodes. A disadvantage of this model is the decrease in<br />

performance which occurs as the number of users and user groups rises.<br />

Furthermore, it is not possible to group resources into organisational units, for<br />

example, in order to reserve a server for a particular department.<br />

b) Master-domain model<br />

<strong>The</strong> main characteristic of this model is that it divides a network into several<br />

domains, one of which centrally manages all user accounts and group<br />

accounts. This domain is termed master domain. <strong>The</strong> other domains hold the<br />

resources. <strong>The</strong>se resource domains trust the domain holding the user accounts.<br />

Trust Trust<br />

Trust<br />

<strong>The</strong> master-domain model is illustrated in the following diagram:<br />

According to Microsoft, this domain model can handle up to 15,000 users. It is<br />

particularly suitable for organisations which consist of several departments,<br />

each needing to manage its own resources, and in which user administration is<br />

performed centrally. This domain model allows a separate person to be<br />

appointed for the administration of each of the resource domains, and also<br />

permits central security management.<br />

____________________________________________________________________ .........................................<br />

<strong>IT</strong>-<strong>Baseline</strong> <strong>Protection</strong> <strong>Manual</strong>: Oktober 2000<br />

Master-<br />

Domäne<br />

Ressourcen-Domänen

logo

products

Resources

Company

Terms of service
Privacy policy
Cookie policy
Cookie settings
Imprint
Change language
Made with love in Switzerland
© 2024 Yumpu.com all rights reserved

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!