Microsoft Lively Listing (AD) was launched about 20 years in the past with Home windows Server 2000 on February 17, 2000. Further flavors of AD had been introduced as a part of Microsoft Azure, a cloud computing service providing by Microsoft. This text compares the three distinct id providers provided by Microsoft.
- Lively Listing Area Companies (AD DS)
- Azure Lively Listing (Azure AD)
- Azure Lively Listing Area Companies (Azure AD DS)
Right here’s an evidence of those providers.
Lively Listing Area Companies (AD DS)
The Lively Listing Area Companies (AD DS), is the standard on-premises model of area providers supplied by AD. Organizations use AD DS to centrally handle all their useful resource objects, reminiscent of customers, computer systems, printers, shared folders, teams, organizational items (OUs), and many others. These objects are a part of the Lively Listing area, which permits the directors to securely handle them by Group Insurance policies. Among the key options provided by AD DS consists of:
- On-premises id & authentication
- Consumer and laptop administration
- Group Insurance policies
- Area trusts
AD DS is managed by the organizations on-premises. The Enterprise Directors are answerable for managing AD DS area controllers, AD websites, belief relationships between the domains, Group Insurance policies, backing up and restoring AD DS, and many others.
NOTE: On this article, the phrases conventional AD and conventional AD DS, seek advice from the on-premises deployment of Lively Listing and Lively Listing Area Companies.
| Distinction between Lively Listing (AD) and Lively Listing Area Companies (AD DS)
Lots of people surprise what the distinction is between AD and AD DS. In Home windows Server 2000 and Home windows Server 2003 Microsoft used the time period Lively Listing (AD). Beginning with Home windows Server 2008, Microsoft broke down the providers supplied by Lively Listing into particular person parts, reminiscent of AD DS, AD FS, AD LDS, AD RMS, and AD CS. Subsequently, AD DS is solely the Listing Companies element of the Lively Listing. Different parts included within the newer editions of Home windows Servers are AD Federation Companies, AD Light-weight Listing Companies, AD Rights Administration Companies, and AD Certificates Companies. Collectively all these providers match below the AD umbrella. It’s essential to notice that though earlier editions of Home windows Servers (2000 and 2003) didn’t use the time period AD DS, the listing providers are primarily the identical within the newer editions of Home windows Servers (beginning 2008). |
Azure Lively Listing (Azure AD)
Azure AD gives a number of the identical options within the cloud, as AD DS gives on-premises. Nevertheless, simply because they each have AD of their names, doesn’t imply they’re equivalent providers. Azure AD is a cloud-based id service that provides the next:
- Cloud-based identification & authentication
- Consumer and laptop administration
- Cell System Administration (MDM)
- Entry to Software program as a service (SaaS) functions, Microsoft Azure portal, and Workplace 365 providers
As a result of Azure AD is hosted and managed by Microsoft within the cloud, organizations don’t have direct entry to AD area controllers the way in which they do of their on-premises surroundings. Microsoft exposes elements of the Azure AD to organizations by the web-based interface so that they have sufficient management to run and customise the providers, however Microsoft is answerable for managing the providers and servers behind the scenes in its datacenters throughout the globe.
For an in depth comparability of Lively Listing to Azure AD, go to Examine Lively Listing to Azure Lively Listing.
Azure Lively Listing Area Companies (Azure AD DS)
The Azure AD DS is a managed AD DS service within the cloud. In different phrases, if you need the standard AD DS operating within the cloud, you may reap the benefits of the Azure AD DS service by operating AD DS below Azure AD. Because of this it is possible for you to to make use of conventional AD DS options, reminiscent of Kerberos and NTLM authentication, Group Insurance policies (which aren’t supported in Azure AD), LDAP, and many others.
The next desk supplied by Microsoft compares how the units are represented in Azure AD-joined and Azure AD DS-joined surroundings.
| Facet | Azure AD-joined | Azure AD DS-joined |
|---|---|---|
| System managed by | Azure AD | Azure AD DS managed area |
| Illustration within the listing | System objects within the Azure AD listing | Pc objects within the Azure AD DS managed area |
| Authentication | OAuth / OpenID Join based mostly protocols | Kerberos and NTLM protocols |
| Administration | Cell System Administration (MDM) software program like Intune | Group Coverage |
| Networking | Works over the web | Have to be linked to, or peered with, the digital community the place the managed area is deployed |
| Nice for… | Finish-user cell or desktop units | Server VMs deployed in Azure |
Managed vs. Self-Managed Domains
For organizations who’re interested by operating conventional AD DS providers within the cloud, Microsoft gives a few strategies. You’ll be able to both use a managed area or a self-managed area. Right here’s the distinction.
Managed Area
A managed area is one thing that you’ll create within the cloud utilizing AD DS and Microsoft will create and handle the related assets as mandatory.
Self-Managed Area
A self-managed area is an AD DS surroundings you can create within the cloud utilizing the standard instruments. For instance, you’ll use Digital Machines (VMs) to put in the AD DS area controllers, member servers, and many others. It is a self-managed area so that you (not Microsoft) will likely be answerable for managing the area similar to you do in your on-premises surroundings.
On this article, I’ve solely defined the high-level ideas. Microsoft explains these and different associated subjects in rather more element in this text. You may additionally need to take a look at this second article for extra data on this matter.
Further Studying
Listed here are some associated articles that you could be discover helpful.
