Category
Active Directory
Level
Advanced
Number
95
A Relative Distinguished Name (RDN) uniquely identifies an object within its parent container in Active Directory (AD). For instance, "semo" in "ou=IT, ou=Employees" serves as an RDN. AD ensures RDNs are unique within containers but allows duplicates in different parent DNs.
The sAMAccountName is the user's logon name (e.g., "semo"), limited to 20 characters.
The userPrincipalName combines a prefix (user account name) with a domain suffix (e.g., "semo@secops.local").
The Global Catalog (GC) in AD stores copies of all objects in a forest, aiding access and simplifying searches across domains.
Summary:
- Active Directory uses Relative Distinguished Names (RDNs) to uniquely identify objects within containers.
- The Global Catalog (GC) facilitates cross-domain access and simplifies directory searches in AD.