GLOSSARY
- CA (certificate authority or certification authority)
- An entity which issues Digital Certificates that will contain a public key and the identity of the owner. The CA also attests that the public key contained in the certificate belongs to the person, organization, server or other entity noted in the certificate. A CA's obligation is to verify an applicant's credentials, so that users and relying parties can trust the information in the CA's certificates.
- Container (or Context)
- A specific branch or subtree of an LDAP DIT. "cn=People,ou=Sales,dc=example,dc=lan" and "cn=Groups,ou=Sales,dc=example,dc=lan" could be considered different containers of the "ou=Sales,dc=example,dc=lan" subtree.
- DIT
- Directory Information Table - the hierarchy of objects that make up the local directory structure.
- RID
- The Relative IDentifier of a SID. The last portion of a SID that is not does not specify the type of SID or the serial number of the domain. There are well known RIDs that must be used to administer an SMB network.
- SID
- Security IDentifier. This is the unique alphanumeric number assigned to an object such as a user or group of users in an SMB network.
A structure breakdown of example SID: S-1-5-21-1607479885-249575134-1330272300-500
| S | R | I | S1 | S2 | S3 | S4 | S5 |
| S | 1 | 5 | 21 | 1607479885 | 249575134 | 1330272300 | 500 |
| The type of SID | the serial number of the domain | the RID | |||||
- S identifies the following numbers as part of a SID
R is the Revision Level of the SID
I is the Identifier Authority
S1 represents the first Subauthority
S2 represents the second Subauthority
S3 represents the third Subauthority
S4 represents the fourth Subauthority
S5 represents the fifth Subauthority (Referred to as the RID)