Make your own free website on

Nt Server in the Enterprise
Home NT WorkStation 4.0 NT Server 4.0 Networking Essentials TCP/IP Need Money FindAJob Nt Server in the Enterprise MCSE,MCP, Certification training resources






NT Server in the Enterprise

    The NT Server in the Enterprise exam is a lot like the Server exam with just a few differences. I recommend you know enough to take the Server exam before you take this one. I used my Server Books and then just studied the Exam Cram NT Server 4 in the Enterprise . The main difference between the Enterprise Exam and the Server Exam is trusts. Also just for your general knowledge I didn't have any scenario questions on my server exam, but over half of my Enterprise Exam was scenarios. This is not a hard exam if you understand Server and trust relationships. So I'm only going to cover the trust relationships and Domain models in this study session.

Domain Models

    Domain Models are the way Microsoft organizational schemes for networks. There are several different models you need to be familiar with:

  1. Single Domain Model - Is the model used for small regional networks. There are  no trust relationships in this model.
  2. Master Domain Model - Used for growing companies or a company that has a large user base.
  3. Multiple Master Domain Model - Used in companies that have a large user base and span across several geographical regions.
  4. Complete Trust Domain Model - Used when you need universal access to all resources.

Single Master Domain

    The single domain does not have any trust relationships. Only one PDC and BDC is needed for this domain model. All administrative functions can be controlled from one machine. Microsoft has stated that a single domain can hold up to 25,000, but recommends only having 10,000 in a single domain.    


  1. Provides for centralized management of resources and users
  2. Best model when resources and user base is set.
  3. There are no trust relationships to maintain.


  1. User and resource are not grouped by division or department.
  2. The larger the number of users and resources, the slower the network performs.
  3. Performance will suffer as the domain grows.    

Master Domain Model

       The master domain consists of one Master user domain and at least one resource domain. The master domain is where all the user accounts reside and there are one way trusts from the resource domains to the master domain.


  1. Ideal for moderately sized networks.
  2. Provides for centralized user management.
  3. Provides for departmental control of resources.
  4. Only one set of Global groups have to be defined.


  1. Local groups have to be defined numerous times.
  2. Trusts have to be maintained


Multiple Master Domain

   This is the best domain model to use for large networks. There is a two way trust between all the master domains and one way trusts from all the resource domains to each master domain. There is a simple formula for calculating the number of trusts you need in this domain model.

                    T = M ( M - 1) + R M


                    T = Number of Trusts required

                    R = Number of Resource domains

                    M = Number of Master domains


  1. Solution for very large companies
  2. Can accommodate any number of users
  3. Resources are managed on department level
  4. Any master domain can administer all users


  1. Several sets of local and global groups must be maintained
  2. Number of trusts to manage.
  3. User accounts are decentralized

Complete Trust Domain Model

    This model is also called a mesh. I've never actually seen one but I can imagine this is a nightmare to manage. Every domain essentially trusts every other domain with two way trusts. The formula is T = N ( N-1)

Where T = Number of Trusts

          N = Number of Domains


    You need to understand trusts inorder to pass this exam. The concept is not very hard to understand as long as you develop the correct mindset from the beginning. The arrow always points to the trusted domain. When I was taking my classes someone came up with a little rhyme to help us remember.

    Put the users in the global, the global in the local and point to the one you trust. 

This helped me keep things straight.

The arrow points to the trusted domain, the user accounts reside on this domain. The arrow points away from the resource or trusting domain.

Just because you create a trusts between two domains does not automatically mean there are any resources available. You must still assign resources to groups before users can access them.

All trusts are one way. inorder for you to create a two way trust you must create two one way trusts on each of the trusting domains.

This is pretty much all there is to trusts Make sure you understand Server and you should be able to take both exams in the same day.