Active Directory is the directory service in a Windows 2000 network. A directory service is a network service that stores information about network resources and makes it accessible to users and applications. Directory services are important because they provide a consistent way to name, describe, locate, access, manage, and secure information about these resources.

Directory Service Functionality

Active Directory provides directory service functionality, including a means of centrally organizing, managing, and controlling access to network resources. Active Directory makes the physical network topology and protocols transparent so that a user on a network can access any resource without knowing where the resource is or how it is physically connected, such as in the case of a printer.

Active Directory organizes the directory into sections that permit storage for a very large number of objects. As a result, Active Directory can expand as an organization grows, which allows you to grow from a single server with a few hundred objects to thousands of servers and millions of objects.

Centralized Management

Windows 2000 Server stores information about system configuration, user profiles, and applications in Active Directory. Combined with Group Policy, Active Directory enables administrators to manage distributed desktops, network services, and applications from a central location while using a consistent management interface. Network administrators also have a consistent way to monitor and manage network devices, such as routers.