Talk:Active Directory

DNS is required?
In 2nd para there is a line "indeed DNS is required". Whats the meaning of this emphasis ? Jay 10:42, 27 Jan 2005 (UTC)

Some other directory services can use a variety of name resolution schemes, but AD mandates DNS because it uses SRV records in DNS to locate servers and services. It also forms the basis of the AD naming scheme.--Askegg 04:01, 8 August 2005 (UTC)


 * TCP/IP was optional in early Windows avatars, as Windows had its own stack (NetBIOS/NetBEUI). It's a measure of TCP/IP's ubiquitousness that AD requires DNS, which is based on TCP/IP (well, strictly UDP/IP). Ambarish 21:08, 15 Apr 2005 (UTC)

Where do sites fit?
I'm confused about Sites. The entry says: As a further subdivision AD supports the creation of Sites, which are physical, rather than logical, groupings defined by one or more IP subnets.

Where do Sites fit in the hierarchy? Forest -> Tree -> Site or Forest -> Site.

--Jonwatson 19:22, 31 May 2005 (UTC)

A site has nothing to do with the structure and function of AD itself, but is provided to manage replication. All servers on the same LAN and be grouped into sites and the replication to other sites can be controlled through policies. --Askegg 04:01, 8 August 2005 (UTC)


 * Correct. It's kind of cool how MS have seperated the logical structure from the physical structure... most elegant design, I must say. - Ta bu shi da yu 04:40, 8 August 2005 (UTC)

What does "IP" have to do with "physical"?? With the introduction of VLANs, IP subnets can be arbitrarily spread over a region... — Preceding unsigned comment added by 194.113.59.80 (talk) 11:10, 20 July 2011 (UTC)

Microsoft notice board
Note: to start this off I'm posting this to a few Microsoft articles.

I have kicked this off as I think we can do a lot better on many of our Microsoft related articles. Windows XP is just one example of a whole bunch of people getting together to fix up issues of NPOV, fact and verifiability of an article. I think that no matter whether you like Microsoft or not that we could definitely do with a review of: a) the articles that we already have, and b) the articles that we should have in Wikipedia! - Ta bu shi da yu 02:06, 10 Jun 2005 (UTC)

in the Trust paragraph.
What is this doing in the trust paragraph? It has been here for a while ( Since Oct 2004 ) and if it serves no purpose it should be removed. --2mcmGespräch 22:41, 17 October 2005 (UTC)
 * Looks like he inserted it for an internal link. I'd guess he didn't realise that you can use the existing ID's generated by the headings to link to. Plugwash 03:56, 30 October 2005 (UTC)


 * At the time the editor inserted that div it looks like he/she was thinking about later having trust be a paragraph but not a section. The div was inserted so that people could link to Active Directory. The div was redundant as the editor also added a trust section and that never went away. I removed the div. --Marc Kupper&#124;talk 22:34, 15 November 2010 (UTC)

Other tools
MS DO interoperate with plenty of external tools. AD is based on LDAP and Kerberos and it is easy to integrate MS and Non MS directories and kerberos environments using the latest OpenLDAP and MIT Kerberos libraries. This is a prime example of the opinionated anti-MS FUD coming from people that dont know what they are taking about.


 * Wikipedia is full of anti-MS content. —Preceding unsigned comment added by 217.220.62.36 (talk) 12:47, 5 August 2009 (UTC)

Sites...
I want to khow how many sites can one domain have? I'e for a maximum of how many sites in one domain can the replication take place...

There is no relationship between sites and domains. Sites are part of the configuration naming context and are hence common to all domains within a forest. There are ultimately limits to the number of sites that can be supported however the environment would need to be extremely large. I have seen 800 sites supported without too many problems. The actual replication topology (i.e. inter site links) will be as important as the core number of sites. 800 sites in a chain end to end is a far different proposition to a single hub with 799 spoke sites.

Sites are a logical construct and not a physical one. The concept is to define 'zones' for replication, search space for the preferred domain controller for logon authentication, etc. Microsoft has different treatments for activities defined as being within the same site vs. activities occurring between sites.

AD replication and dFS replication are two oft-cited instances of this treatment: If multiple AD domain controllers exist in each of two or more sites, replication will occur primarily between DCs within a given site, with 'bridgehead' servers providing a link for replication between sites (and then relaying that information to other servers within the site).

But another demonstration of sites can be found by opening MS AD-supporting DNS. Under forward lookups, you'll see MSDCS records; under those records you'll see sites, and within a site you'll be able to drill down to a TCP 389 record (LDAP). Since a Windows logon provides only the following [username+password+domain] in its logon request, something must support locating a physical domain controller as the destination for the logon request. That 'something' is DNS; specifically, a search for that LDAP service. So, functionally, the requesting machine goes to DNS, looks under the domain name, looks in its own site (if available), and finds the server(s) supporting LDAP. If you only have one site, all servers are seen as equally available. That's why, if you have preferences for the authenticating domain controller, or if you want to avoid authenticating over a WAN link, the assignment of sites can control the default action for logons (and controlling replication, etc.)

Sites are defined as named objects, but hosts are assigned to a site by their IP address, so sites should be built to contain one or more IP subnets which you want to be seen as relatively 'together', and 'separated' from other IP subnets assigned to one or more additional sites. —Preceding unsigned comment added by 66.162.130.66 (talk) 00:29, 7 October 2007 (UTC)

AD management
Are there any other tools for AD management other than the MMC? I'm specifically trying to manage users from a linux machine. --212.130.183.202 13:33, 24 April 2007 (UTC)

You can a UNIX LDAP tool to do this, simply bind to the domain controller using an account with rights to manage the users you are concerned with.

If you need to manage your keytabs, have a look at the free adkadmin from certifiedsecuritysolutions.

May I enquire about this article's quote on Services for Unix and Active Directory. As far as I know SFU is an NT subsystem much like Win32; if Microsoft is in the market for integrating Unix machines into Active Directory, SFU is certainly not the product concerned.

I have not made the edit to allow the maintainer of this page to verify this.

17.82.75.150 07:27, 17 May 2007 (UTC)

Open Directory as drop in replacement for AD?
The final sentence of the Alternatives paragraph reads: Open Directory is another alternative to Active Directory that can completely replace the need for Active Directory if a desire to implement Group Policy is not required. But I don't see how to get past the discovery phase. According to Microsoft's How Domain Controllers Are Located in Windows article; after the SRV record lookup a Windows client will use Connectionless LDAP (UDP) to verify that the server is active. (Despite only asking for _tcp SRV records...) As far as I can tell, Open Directory doesn't (yet) support CLDAP; so the server lookup fails. —The preceding unsigned comment was added by 72.196.120.245 (talk • contribs).

"If a desire to implement group policy is not required" - there are in practive few environments that would willingly forgo basics such as login scripts, security policy management, software distribution etc... What about migration?

"Although an Active Directory migration is clearly a case of when, and not if, for the majority, Microsoft won t be alone in the NOS directory services space: Two old rivals Novell and Netscape are also making a strong showing."

http://www.forrester.com/Research/LegacyIT/Excerpt/0,7208,24653,00.html

Vandalism with Large corporations.
Someone keeps vandalizing this and claiming that AD is the only option for large enterprise, which is funny, because I swear that I've seen many schools and universities running open directory Maybe this should be locked to prevent it again?

This is the second time (at least) now. —Preceding unsigned comment added by 220.239.148.218 (talk • contribs)


 * Protection isnt really warranted for such manageable acts. Instead please keep an eye for the person who does it. Maybe he can be blocked (if you manage to catch the person, please let me know directly). Also protection would lock yourself out!. --soum talk 11:42, 10 July 2007 (UTC)

I dont agree. A school or university is not a large enterprise in this context. The fact is, large businesses with significant investment in Microsoft technology deploy AD because it makes Windows easier and cheaper to manage. The only commercial product that comes close to providing a similar feature set is a Netware & Zenworks combination and Novell are getting out of this market. Open Source? Give me a break. Sure you can put in SAMBA, completely irrelevant in this context as it emulates NT4, and any LDAP directory, whether open source or otherwise does not support NOS related functionality like group policy, login scripts, startup scripts, security policy management etc. Have

It strikes me that a lot of people contributing to this page seem to look at AD from an LDAP point of view only - this is completely missing the point.

And we havent even started on exchange yet.

So lets get some realism and truth into this discussion, please.


 * Like, for instance Google... Or Sun...  Or Apple... Or Novell.  —Preceding unsigned comment added by 164.106.249.254 (talk) 23:19, 5 October 2010 (UTC)

The shilling for Microsoft here is indeed a bit silly; the very largest enterprises historically couldn't use AD because it wouldn't scale to the level that OpenLDAP does, and segmentation (which was the "solution" Microsoft offered at the time) was ridiculously impractical for most. Now that AD can finally scale (albeit at much higher cost in hardware) it's usable by the big boys, but why would they want to, if they already have AD-compatible OpenLDAP running for hundreds of thousands of employees at a lower cost of ownership? If they have low enough technical literacy that they want Outlook/Exchange, OK, but obviously tech leaders like Google aren't running Exchange. The Outlook/Exchange combo offers poor security, high cost, poor performance and it is not SMTP-compatible (it cannot support the RFC5322 requirement for multiple message authors, for example) and highly technically literate organizations aren't willing to pay more to get less. — Preceding unsigned comment added by 159.53.110.228 (talk) 19:01, 17 June 2024 (UTC)

Software deployment
In the definition it says that software can be deployed, but in Alternatives it says that is cannot. Should the definition be changed?

The definition is wrong. Software deployment is included within Group Policy, it is not an optional extra. Many AD installations make use of this, and it does not require "custom schema extensions" as is currently stated.

Market coverage
I was interested to see some info in this article about market coverage.. gains etc.  For example it seems to have been quite succussful in replacing Novell Netware in this space over the last 7 years or so as almost the default proprietory directory system of choice for many organisations (just my perception - which may be wrong - and thats why i looked up this article)

The article just seems to be about the technical side of it - I think it could befefit from non technical aspects like this.

Djambalawa (talk) 01:42, 21 February 2008 (UTC)

Server 2003/2008 information
The article lacks info on what new features were added in Srv 03 and 08. Can anyone add them? 2003 server bater than on the 2008 server.

ADMT
Should the Active Directory Migration Tool be mentioned somewhere? Thomas d stewart (talk) 15:27, 30 October 2008 (UTC) gggyggy — Preceding unsigned comment added by 175.184.252.18 (talk) 05:19, 24 September 2015 (UTC)

Groups
The diagram provided under Forests, Trees, and Domains seems incomplete. It appears as though OUs contained (or should/are able to contain) groups rather than directly Users which appears to be what this diagram suggests. There seems to be very little in this article on groups at all, perhaps a section or link should be added. Learning about Global, Domain Local and Universal Groups in my Windows Server classes makes me wish there was a concisely laid out section (or article) on the various types of groups on a Windows Server.

--Ninjasaves (talk.stalk) 17:38, 23 September 2009 (UTC)

ACTIVE DIRECTORY
AD provide central list of users and groups. —Preceding unsigned comment added by 122.164.99.114 (talk) 15:04, 8 October 2010 (UTC)

Novell?
There's a sentence about Novell eDirectory in this article, along with a screenshot. Is that appropriate? —Preceding unsigned comment added by 159.233.69.220 (talk) 15:01, 21 October 2010 (UTC)
 * Yes, it is. This is not marketing material for Microsoft. An encyclopedia article is not supposed to just extol on the virtues of the subject material without mentioning deficiencies or disadvantages.
 * AD has some very real design problems which make usage and management unnecessarily difficult for end-users (no name duplications allowed, even in separate OUs) and which Microsoft either does not intend to fix or cannot fix.
 * Someone with only AD experience may assume that this is the only way things can work. It is worth mentioning the alternatives and how they compare to AD. DMahalko (talk) 03:27, 30 December 2010 (UTC)

Tags
Howdy, I hope I'm not out of line in tagging this article for cleanup (specifically the lead). My issue is that as a very tech competent person (at least more than the average bear), I was unable to understand from reading the lead: What is an active directory and how it is notable. To my mind this is the basic question(s) that a lead must answer with tech articles being no exception. While we hope that experts write these articles, they must be written with the non-expert in mind. Thoughts? Joe407 (talk) 13:44, 15 December 2010 (UTC)

Comparison with Novell eDir is a valid topic here
In rebuttal to User:Lfstevens who has removed the content referring to Novell eDirectory as marketing, encyclopedia articles are supposed to be unbiased about the topic material and may include sections discussing both the advantanges and disadvantages of the topic material in comparison to other topic material. Stripping the Novell comparisons away removes any hint that there is an alternative to the deficiencies of the Microsoft directory implementation.

As far as suggestions from other editors that there are a myriad of "other directories" available besides Novell's, that is false. The only alternatives are LDAP and eDir, and only Novell has worked to make eDir a viable drop-in replacement for AD.

The deficiencies of Active Directory are very real and require significant workaround and kludges to resolve (shadow groups), and that should be mentioned as well, as the fact that there is an alternative.

I will likely be restoring or re-inserting the sections referring to Novell that were removed by Lfstevens. DMahalko (talk) 15:31, 28 December 2010 (UTC)


 * There's a statement in the lead that AD is based on Novell eDirectory. It's unclear what that means. Did the removed content explain that? If not, that bit in the lead needs a citation. --Pnm (talk) 04:16, 30 December 2010 (UTC)


 * I think the comment about AD being based on Novell eDirectory is false. James Alchin who led Active Directory development was hired by Microsoft from Banyan, where he was chief architect of Vines.  I am removing the eDirectory attribution, if someone wants to reinstate it with evidence, be my guest. Jonabbey (talk) 21:38, 7 January 2011 (UTC)


 * Thanks. --Pnm (talk) 05:42, 8 January 2011 (UTC)

Merger complete
✅ All information from Likewise Open has been merged into this article. Northamerica1000(talk) 06:11, 16 March 2012 (UTC)

Container terminology is ambiguous and misleading
The article contains this assertion:


 * Organizational Units are an abstraction for the administrator and do not function as containers; the underlying domain is the true container.

The notion of a "true container" here is apparently one which does not permit any duplicates of some particular property anywhere in the hierarchy above or below it (in this case, sAMAccountName). This is IMO the author's terminological invention and not standard. The assertion and its conceptual basis is muddy at best and utterly confusing to the reader at worst.

Organizational Units clearly *do* function as hierarchical containers; there should be no assertion that they "do not function" this way. Containing leaf nodes in the tree, and other OU's to add hierarchy to the tree, is indeed their *primary* function.

A suggestion revision would be something like: "Organization Units do not define coherent identity management domains. That is the purpose of the domain itself, ensuring uniqueness of user identities across the domain, which in Active Directory is represented most tangibly by the sAMAccountName property," etc. — Preceding unsigned comment added by Chriscorbell (talk • contribs) 19:09, 29 March 2012 (UTC)


 * I challenged the statement. --Chealer (talk) 20:31, 17 October 2014 (UTC)


 * He. Rewrote it entirely because it contradicted a source in the article. The preceding TechNet source explicitly called OUs containers. But I think it is true that they are not mutually exclusive containers. Best regards, Codename Lisa (talk) 05:20, 19 October 2014 (UTC)

Example
All great an all but since some made the great redirect of (Redirected from User Principal Name) they could have figured to include a formatting example. The three sins of tubez, date, example and contact. — Preceding unsigned comment added by 84.239.241.220 (talk) 10:49, 2 April 2013 (UTC)

Functional Levels
This resource needs a paragraph on functional levels. The Trusts section mentions functional level, but the levels themselves are not described. See http://technet.microsoft.com/en-us/library/cc787290(v=ws.10).aspx for a source. -- Dave Braunschweig (talk) 16:24, 4 June 2013 (UTC)

Active Directory History
The history section is basically nonsense. When Microsoft started giving away their technically inferior, NETbios-based PC networking stack free with Windows (as an alternative to Novell's then-dominant flagship NetWare) while simultaneously distributing Windows-branded NetWare drivers that performed extremely poorly (some say these were purposely crippled, although this is probably untrue) Novell's networking business began to crumble. Novell needed to find a new uninhabited technology niche, so they developed Novell Directory Services (NDS) as a path forward and became the first large scale enterprise identity management company. NDS stacked the LDAP protocol (developed by Zeilinga et al as a response to x.511 DAP bloat) on top of a tree structured database they bought from the LDS (Mormon) Church. NDS was extremely successful and still exists under the eDirectory aegis, but when Microsoft needed a Directory backend for Exchange, they didn't want to create a dependency on a company they'd previously nearly destroyed, so they hacked together a JET database and an XDS server from an old LAN Manager project that had previously been canceled and created Active Directory. They gave it an LDAP compatible interface in order to ingest LDIF files dumped from NDS, but the original implementations weren't RFC compliant, and they aren't completely compliant today, so to say that it grew out of the RFCs is quite a stretch. Microsoft was (at that time) involved in RFC processes primarily as a spoiler and saboteur, as is proven by the infamous Halloween Documents and demonstrated by the MARID fiasco. In those days Microsoft was a very different company than it is today. Until quite recently AD was not able to scale to the level of NDS/eDirectory and it still can't scale to the level of OpenLDAP, but it provides Microsoft specific, non-RFC compliant features such as GPOs, DNS transport embedding, &etc. so it is very attractive to any enterprise where MS Windows is heavily entrenched. Companies that can provide true AD emulation on OpenLDAP exist, but most enterprises will either choose AD (now that it's finally capable of reasonable scale without segmentation) or forgo the extra Windows management features AD can provide. --Charlie 2024-06-17 — Preceding unsigned comment added by 159.53.110.228 (talk) 19:49, 17 June 2024 (UTC)

Active Directory (AD) is NOT a Microsoft unique technology. Inexperienced folks and Microsoft evangelist tend to make the common mistake that Microsoft is a leader in research and development. Microsoft most often exploits existing technologies for profit and participates in the refinement of the technology but rarely creates a new technology, if ever. Even at the core of Microsoft, Windows, is Microsoft's implementation of X-Windowing developed in the 1960s at MIT. AD is an industry technology that Microsoft adopted by name and implemented in its midrange server product lines about 1998. Microsoft utilizing AD most likely drove the industry to look at it since so many systems are Microsoft and must integrate with Microsoft's products. In a release prior to Microsoft, Novell released NetWare 5.0 introducing its version of Active Directory called Netware Directory Services (NDS). NetWare 5.0 was a poor implementation of AD and resulted in the demise of Novell and NetWare as a competitive product to Microsoft's mid range server line.

Active Directory, as most information technology efforts, originated out of a democratization of design using Request for Comments or RFCs. Numerous RFCs have been initiated by widespread participants and accepted by the IEEE Consortium, The Internet Engineering Task Force (IETF), that oversees the RFC process. Active Directory incorporates decades of communication technologies into the overarching AD concept then makes improvements upon them. For example, LDAP is a long standing directory technology that undergirds AD. Also X.500 directories and the Organizational Unit preceded the Active Directory concept that makes use of those methods. The Active Directory concept was emerging as much as a decade before Microsoft even was even a startup with RFC's as early as 1971. Bill Gates was asking his mom for a nickel and was chasing ice cream trucks when AD was emerging.

IETF: http://www.ietf.org RFCs can be searched here: http://www.rfc-editor.org/search/rfc_search.php — Preceding unsigned comment added by GeoBub (talk • contribs) 01:04, 7 June 2013 (UTC)
 * This is untrue. NDS uses LDAP and AD is Microsoft's own name for its LDAP implementation.--Best Dog Ever (talk) 12:15, 5 July 2013 (UTC)

The article starts with "developed by Microsoft" in the first line. That's stretching it!

F J Leonhardt 13:24, 16 December 2019 (UTC) — Preceding unsigned comment added by Fjleonhardt (talk • contribs)

User Principal Name redirects here
...but is not mentioned in the body of this article. Can anyone expand on it? -- BlueNovember (talk • contribs) 12:36, 14 May 2014 (UTC)
 * Hi. I nominated it for deletion. Best regards, Codename Lisa (talk) 13:11, 14 May 2014 (UTC)

Rename "Physical Matters" to "Sites"
I just came to this page as a user to improve my understanding of domains. I was looking specifically for more information on 'sites' but the index made no mention of it (though I found it by searching the page). I think this article would be improved if this chapter was renamed from "Physical Matters" to "Sites", but I dare not change it as there might be a clever rationale behind the current chapter name. — Preceding unsigned comment added by 141.136.126.38 (talk) 12:58, 1 July 2014 (UTC)

Physical structure - Distinguishing Low Speeds
In the Physical Structure section, it states that AD distinguishes Low speeds from High speeds, citing WANs and VPNs as low speeds, and LANs as high speeds. Is this meant to refer to WANs (Wide Area Networks), or WLANs (Wireless Local Area Networks)? — Preceding unsigned comment added by 216.152.208.1 (talk) 03:04, 21 September 2015 (UTC)

Client connections
Could someone address the technical differences in how Microsoft OSes since the advent of Vista no longer can join domains from the "lesser" (starter, home, home premium) versions? What is disabled and how? Is it missing files, registry keys or what? Is there workarounds, software that can be utilized as alternatives? — Preceding unsigned comment added by 75.82.113.10 (talk)
 * Hi.


 * This issue addressed in each Windows article.


 * And you are wrong about the Windows Vista part. Windows XP Starter, Home and Media Center edition could also not join a domain. Neither could Windows ME, 98 or 95.


 * Best regards,
 * Codename Lisa (talk) 19:47, 23 January 2016 (UTC)

Yeah. Good discussion. If you can't answer the question, then why bother writing anything at all? Oh, because you're busy being a Troll, perhaps? — Preceding unsigned comment added by 75.82.113.10 (talk)

Latest changes
User:Codename Lisa wrote: "Reverted direct contradiction with the article body. Also verification failed. Since when did the source claimed a user is a system object?"

My response: I see no contradiction with the article body. There is no verification failure: the source clearly states that a user is an object in paragraph 1, viz "used to store objects like User, Computer, printer, Network information". I've therefore undone your changes. Deb (talk) 12:50, 8 March 2017 (UTC)


 * Hi.
 * First, you are in effect writing that Active Directory is in charge of centralized domain management. Well get this: Two sentences later the article says "Initially, Active Directory was only in charge of centralized domain management. Starting with Windows Server 2008, however, [...]" That's one contradiction. Must I go on?


 * Second, the source says:
 * "Active Directory (AD) is a directory service developed by Microsoft and used to store objects like User, Computer, printer, Network information [...]"
 * It never says users are system objects.


 * Third, I am contesting your source on the grounds of reliability. It hasn't even received a careless proofreading; editorial oversight is nonexistent.


 * Best regards, Codename Lisa (talk) 13:26, 8 March 2017 (UTC)


 * Codename Lisa - "In effect" means something quite different from "literally". It means that is your interpretation of the statement. It's not mine and it's not what I said. The contradiction is in your head. When I describe an object within a system as a system object, that's also pretty clear to anyone who is not trying to blind people with jargon. And you can drop the snarky edit summaries as well. I've been here far too long to be affected by a gibe like that. It looks to me like you have a problem with ownership of this article. Deb (talk) 15:28, 8 March 2017 (UTC)
 * While I don't agree with Codename Lisa's comment on the system objects (actually, I don't know what she is talking about), her comment on the reliability of your source is spot on and there is merit in her concern regarding contradiction. Your contribution is clunky at best.
 * That said, you are engaged in edit warring. You are clearly evading the consensus-building process by counter-reverting, commenting on the editor, and a bad-faith WP:POINTy edit involving insertion of retaliatory Citation needed on the lead when there was a citation a few words later.  Fleet  Command ( Speak your mind! ) 20:48, 8 March 2017 (UTC)
 * Not pointy at all, User:FleetCommand. I followed her guidance by removing the word "system" and I looked for other improvements that might be made. This intro has been tagged for a long time and it needs attention. If I'm not going to do it, who is? I believe there is a citation needed there. Please point me to a statement in the reference at the end of the paragraph that supports the statement made in the penultimate sentence - AND I corrected the grammar. By reverting you are assuming bad faith, and you are also starting another potential edit war. I expect an apology for that. Deb (talk) 21:21, 8 March 2017 (UTC)
 * 1. Citation needed does not belong in the lead. We have Citation needed (lead) for that and it is only used when the body fails to verify the lead. In this case, I think the lead is a good-faith summarization of citation #12. It says "Active Directory Domain Services (AD DS) stores directory data and manages communication between users and domains, including user logon processes, authentication, and directory searches."
 * 2. I don't see any grammar correction. You moved one "only" and that's a style choice.
 * 3. Your edits do not do anything related to the tags already in the article.
 * 4. Edit warring doesn't refer to one edit. It is an event in which one editor (or sometimes more) refuses to engage in dispute resolution by repeatedly reinstating the revision he himself favors. Even if you didn't intended it, your communication with CL does not amount to any mutual cooperation and the difference between your second and third revision is minuscule. Put them together, and from my view, you are refusing to engage in dispute resolution by repeatedly reinstating the revision you favor.
 * 5. You are conveniently ignoring the WP:RS issue.
 * You are an admin. Certainly you knew all this.
 *  Fleet  Command ( Speak your mind! ) 22:09, 8 March 2017 (UTC)
 * Actually, do you want to see a person who is genuinely a team worker and is actively improving Wikipedia? I spy on my watchlist with my little eye ... . I could swear I saw CL reverting one of his edits but I am not seeing no edit war.  Fleet  Command ( Speak your mind! ) 22:11, 8 March 2017 (UTC)
 * Okay, so you are not going to answer my question about the source, and you can't see the difference in meaning resulting from putting "only" in the wrong place. You don't want to tackle the tag that says the article is too technical, even in a small way. You don't understand what edit warring means; you don't recognise that reverting based on personal preference is an aggressive action that frequently leads to edit wars. And you are failing to make your single valid point - about the source - by creating a long list of supposed misdemeanours that I haven't committed. I'm bored with this now; I use Active Directory at work every day and I don't choose to spend my evenings arguing with you about it. The article needs a lot of work, so if you've got improvements to make, let's see you make them. Deb (talk) 22:37, 8 March 2017 (UTC)
 * I dignified you with a response once; yet you continue to play dumb. Suit yourself. I lament to see our admins – our role models – have fallen so low.  Fleet  Command ( Speak your mind! ) 00:04, 9 March 2017 (UTC)


 * Hi again, guys
 * It seems the discussion has seriously gone downhill in my absence.
 * Look, the reason I mentioned "user is not a system object" was tact. I wanted to point out a hilarious mistake, hoping that upon inspecting the contribution, Deb notices all the other problems are resolve them, and we separate with a smile on our faces. It seemed not nice to tell an admin that what he is trying to add is already in paragraph #2, a couple of sentences away. (In the correct context too.) I was sure we could work out a compromise.
 * Best regards, Codename Lisa (talk) 09:37, 9 March 2017 (UTC)
 * Oh! How cute.
 * In the meantime, this "person" (for the lack of better word) has hugged his favorite revision like a mean kid hugging his favorite doll to prevent other kids from touching it. He sees himself as a crusader on a crusade to fix the article and us minions of Satan. Of course, in his holy crusade, he reads no more than one sentence from the lead and thinks he has reached the end of the world. Some crusader! See his last message: It is so full of bullshit the only evidence I have that he hasn't posted it here by mistake is when he say "I use Active Directory at work every day", implying that doing so makes him a great article writer. [SCOFF!]
 * I checked one thing though. He is not one of your revered admins who have gone through a gauntlet and have done some labors of hercules to become admin. Back in 2003, a vote from 5 people gave him the mop. It's like giving a doctorate to five-years-old retard.
 *  Fleet  Command ( Speak your mind! ) 14:21, 9 March 2017 (UTC)

External links modified
Hello fellow Wikipedians,

I have just modified one external link on Active Directory. Please take a moment to review my edit. If you have any questions, or need the bot to ignore the links, or the page altogether, please visit this simple FaQ for additional information. I made the following changes:
 * Added archive https://web.archive.org/web/20110927182939/http://www.padl.com/~lukeh/rfc2307bis.txt to http://www.padl.com/~lukeh/rfc2307bis.txt

When you have finished reviewing my changes, you may follow the instructions on the template below to fix any issues with the URLs.

Cheers.— InternetArchiveBot  (Report bug) 07:17, 26 June 2017 (UTC)

Biased tone?
The "History" section reads like corporate copy. For example "Active Directory incorporates decades of communication technologies into the overarching Active Directory concept then makes improvements upon them" sounds like something one might find in a Microsoft brochure on Active Directory. It seems like this could be re-written to be more objective — Preceding unsigned comment added by 64.94.36.4 (talk) 18:52, 5 June 2018 (UTC)

A Commons file used on this page or its Wikidata item has been nominated for deletion
The following Wikimedia Commons file used on this page or its Wikidata item has been nominated for deletion: Participate in the deletion discussion at the. —Community Tech bot (talk) 21:14, 8 May 2022 (UTC)
 * Microsoft logo (2012).svg