Term
|
Definition
| Organizations that contain the user accounts accessing the resources controlled by resource organizations, similar to a trusted domain in a traditional Windows trust relationship. |
|
|
Term
| Active Directory Federation Services (AD FS) |
|
Definition
| Role that enables administrators to configure Single Sign-On (SSO) for Web-based applications across multiple organizations without requiring users to remember multiple usernames and passwords. |
|
|
Term
| Active Directory Rights Management Service (AD RMS) |
|
Definition
| Windows Server 2008 service that administrators can use to protect sensitive data on a Windows network. In particular, it enables owners of data stored within RMS-capable applications (such as word processing or spreadsheet applications) to control who can open, modify, or print a document and even who can print or forward confidential email messages. |
|
|
Term
|
Definition
| Service that enables administrators to route authentication requests from user accounts in one organization to Web-based application resources in another. |
|
|
Term
| AD FS Federation Services Proxy |
|
Definition
| Service that creates a proxy to the Federation Service that can be deployed in a perimeter network or demilitarized zone (DMZ). |
|
|
Term
|
Definition
| Zone in which the DNS data is stored within the Active Directory database. |
|
|
Term
|
Definition
| Resource record that is used to specify alternative names for the system specified in the Name field. |
|
|
Term
|
Definition
| DNS server that contains no zones and hosts no domains. |
|
|
Term
|
Definition
| Resource record that is used to specify an alternative name for the system specified in the Name field. Also known as an alias. |
|
|
Term
|
Definition
| Agent installed on a Web server that hosts a claims-based application to enable it to query AD FS security claims. |
|
|
Term
|
Definition
| Characteristic of AD FS–enabled applications that allows a much more scalable authentication model for Internet-facing applications. |
|
|
Term
|
Definition
| Server that will forward queries selectively based on the domain specified in the name resolution request. |
|
|
Term
|
Definition
| Administrative entity that consists of a group of hosts, usually a combination of computers, routers, printers, and other TCP/IP–enabled devices. |
|
|
Term
|
Definition
| Consists of a hierarchy of domains. Each domain has DNS name servers that are responsible for supplying information about the hosts in that domain. |
|
|
Term
|
Definition
| Name resolution mechanism that computers use for all Internet communications and for private networks that use the Active Directory domain services included with Microsoft Windows Server 2008, Windows Server 2003, and Windows 2000 Server. |
|
|
Term
|
Definition
| Application partition that is replicated to all domain controllers that are running the DNS server service in the domain. |
|
|
Term
|
Definition
| Field that contains the name of a computer capable of acting as an email server for the domain specified in the Name field. |
|
|
Term
|
Definition
| Application partition that consists of all domain controllers configured as DNS servers within the entire forest. |
|
|
Term
|
Definition
| DNS server that receives queries from other DNS servers that are explicitly configured to send them. |
|
|
Term
|
Definition
| Fundamental data unit of the DNS. This resource record has a single Address field that contains the IP address associated with the system identified in the Name field. |
|
|
Term
|
Definition
| Resource record for an IPv6 host; an AAAA record is the IPv6 equivalent of an A record in IPv4. |
|
|
Term
|
Definition
| A resource record contains two fields, CPU and OS, that contain values identifying the processor type and operating system used by the listed host. |
|
|
Term
|
Definition
| One-word friendly name assigned to a computer. |
|
|
Term
|
Definition
| Special domain that is specifically designed for reverse name resolution. |
|
|
Term
|
Definition
| Server that receives the name resolution request immediately responds to the requester with the best information it possesses. This information can be cached or authoritative, and it can be a resource record containing a fully resolved name or a reference to another DNS server. |
|
|
Term
|
Definition
| DNS function that directs email messages to the appropriate mail server. |
|
|
Term
|
Definition
| NS resource record identifies the name server that is the authority for the particular zone or domain; that is, the server that can provide an authoritative name-to-IP address mapping for a zone or domain. |
|
|
Term
|
Definition
| Applications running on server computers maintain information about the domain tree structure and contain authoritative information about specific areas of that structure. |
|
|
Term
|
Definition
| Name assigned to a computer during the operating system installation. |
|
|
Term
|
Definition
| List that allows the server hosting a primary zone to notify secondary zones when changes have occurred. |
|
|
Term
|
Definition
| Resource record that is the functional opposite of the A record, providing an IP address-to-name mapping for the system identified in the Name field using the in-addr.arpa domain name. |
|
|
Term
|
Definition
| Field that contains an integer value indicating the relative priority of this resource record compared with others of the same type and class in the same domain. The lower the value, the higher the priority. |
|
|
Term
|
Definition
| Zone that contains the master copy of the zone database, in which administrators make all changes to the zone’s resource records. |
|
|
Term
|
Definition
| DNS server receiving the name resolution request takes full responsibility for resolving the name. |
|
|
Term
|
Definition
| Process by which one DNS server sends a name resolution request to another DNS server. |
|
|
Term
|
Definition
| Client programs generate requests for DNS information and send them to name servers for fulfillment. A resolver has direct access to at least one name server and can process referrals to direct its queries to other name servers when necessary. |
|
|
Term
|
Definition
| Organizations that own the resources or data accessible from the AD FS–enabled application, similar to a trusting domain in a traditional Windows trust relationship. |
|
|
Term
|
Definition
| Fundamental data storage unit in all DNS servers. When DNS clients and servers exchange name and address information, they do so in the form of resource records. |
|
|
Term
|
Definition
| Highest-level DNS servers in the entire namespace. |
|
|
Term
|
Definition
| Read-only copy of data that is stored within a primary zone on another server. |
|
|
Term
|
Definition
| Record that enables clients to locate servers providing a particular service. |
|
|
Term
|
Definition
| For Web-based applications across multiple organizations, this feature allows user access without requiring users to remember multiple usernames and passwords. |
|
|
Term
|
Definition
| Primary master zone database file on the local drive. |
|
|
Term
|
Definition
| Resource record that identifies which name server is the authoritative source of information for data within this domain. The first record in the zone database file must be an SOA record. |
|
|
Term
|
Definition
| Copy of a primary zone that contains Start of Authority (SOA) and Name Server (NS) resource records, plus the Host (A) resource records that identify the authoritative servers for the zone. |
|
|
Term
| Windows Internet Naming Service (WINS) |
|
Definition
| Name resolution mechanisms for NetBIOS names. |
|
|
Term
| Windows token-based agent |
|
Definition
| Agent installed on a Web server that hosts traditional Windows NT token-based applications so that administrators can convert these tokens from AD FS tokens into Windows NT tokens. |
|
|
