1 00:00:06,450 --> 00:00:15,340 In 80 days you must configure all users who require access to network resources with a user account 2 00:00:15,670 --> 00:00:24,850 with this user account user can authenticate to the aid it is domain and accessed network resources 3 00:00:25,090 --> 00:00:33,280 and vendor server 2016 a user account is an object that contains all the information that defines a 4 00:00:33,280 --> 00:00:43,090 user a user account includes the user name user password and group memberships a user account also contains 5 00:00:43,240 --> 00:00:52,050 many other settings that you can configure based on your organizational requirements with a user account. 6 00:00:52,060 --> 00:01:02,470 You can allow or deny users permission to sign into a computer based on their user account identity. 7 00:01:02,470 --> 00:01:11,320 You can grant user success to processes and services for a specific security context. 8 00:01:11,320 --> 00:01:19,510 You can manage user of access to resources such as ADT as objects and their properties. 9 00:01:19,510 --> 00:01:29,670 Shared folders files directories and renter use a user account enables a user to assign them to computers 10 00:01:29,670 --> 00:01:34,770 and domains with an identity that the domain can authenticate. 11 00:01:34,870 --> 00:01:42,820 When you create a user account you must provide to user a log on name which must be unique in the domain 12 00:01:42,910 --> 00:01:48,850 and forest in which you create the user account to maximize security. 13 00:01:48,850 --> 00:01:57,940 You should avoid multiple users share in a single account and instead ensure that each user who assigns 14 00:01:57,940 --> 00:02:02,320 into the network has a unique user account and password. 15 00:02:02,320 --> 00:02:12,680 Please note that our focus on ADT s account you can also store user accounts in the local security accounts 16 00:02:12,700 --> 00:02:23,230 manager database or which COMPUTER Enable and local sign in and access to local resources local user 17 00:02:23,230 --> 00:02:25,800 accounts are for the most part. 18 00:02:25,960 --> 00:02:28,330 Beyond the scope of this course. 19 00:02:28,420 --> 00:02:36,280 Now some words about creating user accounts a user account includes the user name and password which 20 00:02:36,280 --> 00:02:39,850 serve as a users sign in credentials. 21 00:02:39,910 --> 00:02:47,530 A user object also includes several other attributes that describe and manage as a user. 22 00:02:47,530 --> 00:02:56,980 You can use Active Directory Users and Computers Management Council you can use Active Directory Administrative 23 00:02:56,980 --> 00:03:07,210 Center Management Council and Windows power shell or the DIA's ad command line tool to create a user 24 00:03:07,210 --> 00:03:07,990 object. 25 00:03:07,990 --> 00:03:16,480 Now some words about considerations for naming users your naming convention is an important consideration. 26 00:03:16,840 --> 00:03:25,810 Formalized naming convention will allow you to deal with duplicate user names and name changes in a 27 00:03:25,810 --> 00:03:27,730 standardised way. 28 00:03:27,730 --> 00:03:30,120 When you create user accounts. 29 00:03:30,220 --> 00:03:32,620 Consider the following elements. 30 00:03:32,620 --> 00:03:33,490 Full name. 31 00:03:33,490 --> 00:03:42,160 Attribute this attribute is used to create several attributes of a user object mostly the common name 32 00:03:42,250 --> 00:03:50,650 and display in name attributes the common name of a user is the name displayed in the details pane of 33 00:03:50,650 --> 00:03:56,390 the snap in and it must be unique within the container or you. 34 00:03:56,490 --> 00:04:04,210 You can create a user object for a person with the same name as an existing user in the same container 35 00:04:04,270 --> 00:04:05,850 or over you. 36 00:04:05,920 --> 00:04:11,020 You need to give the new user object a unique full name. 37 00:04:11,020 --> 00:04:16,870 Now you can log on user principal name or European logos. 38 00:04:17,020 --> 00:04:27,430 Follow the format user or log on name at sign and European suffix user names in Ada the S can contain 39 00:04:27,430 --> 00:04:33,260 special characters including periods high fence and apostrophes. 40 00:04:33,280 --> 00:04:41,710 These special characters enable you to generate accurate user names such as names with a post reverse 41 00:04:41,740 --> 00:04:43,210 or dashes. 42 00:04:43,210 --> 00:04:48,850 However certain programs and applications might have other restrictions. 43 00:04:48,910 --> 00:04:57,820 Therefore it is recommended that you use only standard letters and numbers until you test the applications 44 00:04:57,850 --> 00:05:04,000 in your enterprise environment for compatibility with special characters. 45 00:05:04,030 --> 00:05:12,090 You can manage the list of available European suffixes by using the Active Directory domains and trusts 46 00:05:12,090 --> 00:05:21,880 snap in right click the root of the snap in click properties and then use the European suffix a step 47 00:05:21,880 --> 00:05:24,620 to add or remove suffixes. 48 00:05:24,670 --> 00:05:34,130 The domain name system or DNS name of your HDD as domain is always available as a suffix and you cannot 49 00:05:34,180 --> 00:05:37,600 remove it in a multi domain environment. 50 00:05:37,600 --> 00:05:45,520 You can assign different European suffixes to users for purposes such as a male domain suffix. 51 00:05:45,670 --> 00:05:54,340 Please know that it is important that you implement a use a recount naming strategy especially in large 52 00:05:54,340 --> 00:05:58,990 networks in which users might have the same full name. 53 00:05:58,990 --> 00:06:06,880 A combination of last name and first name and where necessary additional characters should yell to a 54 00:06:06,880 --> 00:06:10,220 unique user account name specifically. 55 00:06:10,300 --> 00:06:17,080 It is only the European name that must be unique within your aided forest. 56 00:06:17,230 --> 00:06:24,640 The full name attribute needs to be unique only within the O you where it resides. 57 00:06:24,640 --> 00:06:30,340 The user a same account name must be unique within that domain.