| Platform SDK: Active Directory, ADSI, and Directory Services |
Active Directory is part of the Windows 2000 trusted computing base and is a full participant in the Windows 2000 security infrastructure. Every object in Active Directory is protected by its own security descriptor. The system validates any attempt to access an object or attribute in Active Directory by checking the access permissions allowed by the object's security descriptor.
The following topics describe the highlights of Active Directory security. For more information and code samples, see Controlling Access to Active Directory Objects.
This section discusses the following: