The difference between a domain and a workgroup. What is the difference between a domain and a workgroup? Domain and workgroup on the same network

04.03.2020 Windows 8

On a PC on your network, such as a MARIA laptop, run the command Control Panel-Network and Internet and click on the button Join(Fig. 28.8).

At the first step of joining a homegroup, specify the network resources that will be shared with computers that are part of the homegroup network (Fig. 28.9).

Rice. 28.9.

Next, you need to create an eight-digit password to connect your PC to your homegroup (case sensitive). In dialogue You have joined a home group click on the button Ready(Fig. 28.10).

Rice. 28.10.

Rice. 28.11.

Rice. 28.12.

Difference between domain, workgroup and homegroup

Domains, workgroups, and homegroups represent different methods for organizing computers on a network. The main difference is how computers and other resources are managed. Windows-based computers on the network must be part of a workgroup or domain. Windows-based computers on a home network can also be part of a homegroup, but they don't have to be.

In the working group. Each computer has multiple user accounts. To log on to any computer that belongs to a workgroup, you must have an account on that computer. A workgroup usually has no more than twenty computers. The workgroup is not password protected. All computers must be on the same local network (subnet).
In the home group. Computers on a home network must belong to a workgroup, but they can also (simultaneously) be members of a homegroup. The homegroup is password protected.
In the domain. One or more computers are servers. Network administrators use servers to control security and permissions for all computers in a domain. Domain users must provide a password or other credentials each time they access the domain. If the user has an account in the domain, he can log on to any computer. There can be thousands of computers in a domain. Computers can belong to different local networks.

We have repeatedly mentioned working groups and domains. Let's take a look at how these two models of networking in Microsoft networks are fundamentally different.

Working group is a logical grouping of computers united by a common name to facilitate navigation within a network. It is crucial that each computer in the workgroup equal(i.e., the network turns out to be peer-to-peer) and maintains its own local database of user accounts (Security Accounts Manager, SAM).

This is the main problem that does not allow the use of workgroups in large corporate networks. Indeed, if we recall that logging into a protected system is mandatory, and direct and network logins are fundamentally different (direct login is controlled by the local computer, and network login is remote), then, for example, a user who logged into Comp1 computer under the local account User1, will be denied access to the printer installed on the Comp2 computer, since there is no user named User1 in its local database (Fig. 9.1). Thus, in order to ensure "transparent" interaction in the working group, it is necessary create the same accounts with the same passwords on all computers, where users work and resources are located.

Windows XP Professional for Workgroups has a special mode called "Use Simple File Sharing" to work around this problem (this mode is enabled by default). In this case, the connection to any network computer is carried out on behalf of its local guest account, which is enabled using Network setup wizards(it is disabled by default) and for which the desired access level is configured.

For Windows XP Home Edition, this method of network communication is the main one and cannot be disabled (therefore, computers with this OS cannot be made domain members).

It is clear that you can manage accounts and resources in a workgroup only with a small number of computers and users. Large networks should use domains.

Domain is a logical grouping of computers connected common database of users and computers, security and management policy.

Domains are created based on Windows network OS, and the database, as we said, is supported domain controllers. What is important in domains is that all computers here do not themselves check users at login, but delegate this procedure to controllers (Fig. 9.2). This organization of access makes it easy to perform a one-time user check when logging on to the network, and then, without checking, grant him access to the resources of all computers in the domain.

Hello, dear readers of the blog site. This blog has a detailed one. After or while reading this publication, I advise you to read that article in order to get a complete picture. I also advise you to read my publications on the topic, which means and.

Today we have on the agenda the question - what is domain or domain name(in fact, they are synonyms). Well, it's actually quite simple. This is the site name., which is assigned to it instead of the hard-to-remember IP address of the server hosting this site (see). Enter this name in the address bar of the browser and the site opens.

But the difficulty lies in the details. What they are, how it all works, what are domain zones, how to understand which level domain and which of them can be registered, where it can be done and which zone to choose. There are many questions and I will try to answer all of them in this "small note".

What is a domain?

As I mentioned above, domain is the name for the site..162.192.0. Also, imagine the situation. You have placed a site on a hosting server (see above for what it is) and received an IP address. But, moving to another hosting IP will change, which will cause a disaster. But in the case of domain names, this will not happen. Why?

The fact is that there are thousands of DNS servers (domain name systems) on the Internet, which will state that the domain site is available at IP address 108.162.192.0. If I move to another hosting, then I go to the domain name registrar panel (where I bought it), change something and it will be written in all Internet DNS servers that the site should be searched for at a different IP address. Is it convenient?

Convenient, but probably not clear yet. The main thing to understand is website name is very important thing and it is for life (as a rule, although you can transfer the site to another domain if you wish, but this is not easy). Whatever you call a boat, that's how it will float. True, not only the name is important, but also the level of the domain, as well as the zone to which it belongs. Again unclear? Well, let's go in order.

How a domain name works

Let's start with the basics. The domain record (site name) must include all nesting levels of the domain (all zones it belongs to) so that it is unique and there is no confusion.

There are two main rules for recording domain names:

The zones that this domain belongs to are listed from right to left.
Points are used as a separator.

It might look like this, for example:

Net.blog.site

We get the fourth-level domain net, which is part of the third-level domain zone "blog", which is part of the second-level zone "ktonanovenkogo" belonging to the first-level zone.ru. Nonsense, right? (my wife, who checks for errors in the article, will confirm this with pleasure).

What are the levels of domains

Root domain(zero level) is considered an empty entry, denoted simply by a dot (.). In theory, the full record of a domain name should always end with a dot, but in most cases it is omitted (as if meaning) and instead of the record: site.
They use the already firmly established relative domain record (without a dot at the end):
This is followed by the first level - this is usually regional(national) domains (.ru, .su, .ua, .us, .de, .fr, etc.) or thematic(.com, .edu, .org, .net, etc.). But there are also first-level domain names, including national alphabets(for example, .rf).
Second level- these are the same domains that we are with you buy(we register with special registrars). Prices for them vary not only depending on whether they belong to a particular first-level domain (for example, xxxxxxx.ru is cheaper to buy, as a rule, than xxxxxxx.com), but also depending on the registrar (or its reseller - retailer).
Third, fourth, etc. - they no longer need to be bought (as a rule) and can be created independently (without registering anywhere) based on the purchased second-level domain. For example, I can create such a name for a new site - forum..forum..

Let's explain it all again For example:

. (dot) - zero (root) level domain
ru - the first level, also called top-level domain or zone
website - second-level domain name
blog.site - third level domain
net.blog.site - fourth level

Top (first) level domains

Except for the zero level (root - root domain), because it is emptiness, then the base is the so-called zones or top-level domains(it is with them that the name of any site begins, although it seems that it ends with them - but not the point). They cannot be bought by an ordinary person, but it is from these zones that we will choose when buying a second-level domain (name for our site).

So what are they like:

Domains of the first (highest) level, assigned to countries, which are usually called among very smart people by the abbreviation Cctld, which means country code top-level domain. Russia has two of them:
1. su - a vestige left over from the Soviet Union and now representing the space of resources in Russian
2. ru - originally assigned to Russia
Domains with national alphabets, which are usually abbreviated as Idn (internationalized domain name). In Russia, this is zona.rf. In fact, their names are still written in English characters (recoding takes place), but this is, as it were, hidden from view. However, if you enter the address in the browser: http://ktonanovenkogo.rf/
and after going to this site, copy its address from the address bar, you will get absolutely indigestible nonsense:
Http://xn--80aedhwdrbcedeb8b2k.xn--p1ai/ Here it turns out how unattractive it looks. And it is in this form that it will have to be added to different services (like ), and not in the form of someone new.rf. This must be taken into account. Yes, and other problems are possible, although at first they are not obvious.
Upper public domains, usually called Gtld, which means generic top-level domain, are registered (sold) regardless of the country in which the webmaster lives. The most used of them:
1. .com - for commercial projects
2. .org - for non-commercial sites of various organizations
3. .net - for projects related to the Internet
4. .edu - for educational institutions and projects
5. .biz - commercial organizations only
6. .info - for all information projects
7. .name - for personal sites
8. .gov - for US government agencies

How and where can I register (buy) a domain in top-level zones

Second-level domain names, as a rule, cannot be obtained just like that (and it is better not to try, because the name for the site is too important to risk registering it with no one knows who). They cost money. And payment is made per year, and then the domain lease needs to be renewed.

Once again I will draw your attention - buy second-level domain names, and everything above - you can create yourself on their basis. This is usually done in your hoster's panel in the subdomains section - these are domains of the third and higher levels, such as blog..blog.site.

There are not so many such companies (bright examples are RegRu and webnames), but they may have a whole network of resellers (partners) who will be engaged in the selection and sale of domains on their behalf. If the current reseller did not satisfy you with something or you had trouble with it, then by contacting the registrar, you can choose another reseller or go directly under the wing of the registrar.

At all without Borders you can buy domains in the public domains .com, .net, .org, .info, .biz, and .name. In the .edu, .gov, and .mil zones, however, this option is available only for institutions, as well as educational and military institutions of the states. There are also a number of specialized first level domains, such as .travel, .jobs, .aero, .asia.

Second-level domain names in these public areas can be purchased from any registrar(not only national), which, in fact, is used by some resources that may have conflicts with copyright holders. The same torrent was forced to move to the public zone org, because its resource was blocked in the national domain zone ru.

Second level domains - busyness check and Whois

About half a billion domain names have already been registered on the Internet in various zones, so choosing a good (short, simple, sonorous) name in the right zone is now very not an easy task(just like hard). A third of the registered names are not used at all, because they were bought for resale (successful domains can be expensive in the secondary market - sometimes many millions of dollars).

Checking a domain name for availability

Therefore, the first thing to do when choosing a suitable domain for a site is . This can be done with different registrars (the result will be the same, because they use a common database).

Therefore, when viewing information about a domain in the so-called whois records, you can find your personal data there, which was required during registration. In my opinion, it is better to hide this information, because there are enough dashing people on the Internet (although if you need problems out of the blue...).

Domain name history and purchase of vacant domains

The history of domain ownership can be traced in the so-called . There you can clearly see what kind of sites were ever placed on this domain name, what they were like and whether their history will affect the initial attitude of search engines to your site.

Just below are currently released domains(for a detailed view, click on the price):

Good luck to you! See you soon on the blog pages site

The main threats when working on the network

There are quite a few threats waiting for users when connecting a computer to the network:

"hacking" a computer is usually done in order to seize control of the operating system and gain access to data;
damage to the system is most often organized to disrupt the performance (cause a denial of service - “Denial of Service”) of any services or a computer (usually a server) as a whole, and sometimes even the entire network infrastructure of an organization;

Basic security measures when working on a network

They can be formulated as the following set of rules:

turn off your computer when you are not using it. As computer security experts like to say, “the most secure is a computer that is turned off and stored in a bank vault”;
keep your operating system up to date. In any OS, so-called “vulnerabilities” are periodically discovered that reduce the security of your computer. The presence of vulnerabilities must be carefully monitored (including by reading the “computer” press or information on the Internet) in order to take timely measures to eliminate them.
data theft due to incorrectly set access rights, when transferring data or “hacking” the system, allows access to protected, often confidential information with all the ensuing unpleasant consequences for the owner of this data;
data destruction is intended to disrupt or even paralyze systems, computers, servers, or an entire organization.
use a limited set of well-tested applications, do not install or allow others to install on your computer programs taken from unverified sources (especially from the Internet). If the app is no longer needed, delete it;
Don't share your computer's resources unnecessarily. If this is still required, be sure to configure the minimum required level of access to the resource only for registered accounts;
install (or enable) a personal firewall (firewall) on your computer. If we are talking about corporate networks, install firewalls both on the routers connecting your local network to the Internet, and on all computers on the network;
even if you are the sole owner of the computer, use a user account for normal work: in this case, damage to the system, for example, when infected with a virus, will be immeasurably less than if you worked with administrator rights. For all accounts, especially administrative ones, set and remember strong passwords.

A password is considered complex if it contains a random combination of letters, numbers, and special characters, such as jxglrg$N. Of course, the password must not be the same as your account name. On Windows operating systems, a complex password can be generated automatically using the NET USER command with the /RANDOM switch, for example:
NET USER UserName /RANDOM

When working with e-mail, never immediately open attachments, especially those from unknown senders. Save the attachment to disk, check it with an antivirus program, and only then open it. If possible, enable protection against potentially dangerous content in your email program and disable HTML support;
when working with websites, take reasonable precautions: try to avoid registration, do not share personal information about yourself with anyone, and carefully work with online stores and other services that use online payment methods using credit cards or systems such as WebMoney, Yandex-Money etc.
Two models are used to organize work in Microsoft networks: workgroups, used with a small number of computers, and domains, which make it easy to combine a large number of users, workstations, and servers.
All network operating systems and data stored on computers must be reliably protected, and it is desirable that the security system used be multi-level.

What is the difference between a domain and a workgroup?

2 replies

the real answer to this question is:

Domains, workgroups, and homegroups represent different methods for organizing computers on a network. The main difference between the two is how the computers and other resources on the networks are managed.

Windows-based computers on the network must be part of a workgroup or domain. Windows-based computers on home networks can also be part of a homegroup, but they don't have to be.

computers on a home network are usually part of a workgroup and possibly a homegroup, while computers on work networks are usually part of a domain.

in the working group:

all computers are network peers; no computer can control another computer.

each computer has a set of user accounts. To log on to any computer in a workgroup, you must have an account on that computer.

there are usually no more than twenty computers.

the workgroup is not password protected.

all computers must be on the same local network or subnet.

in domain:

one or more computers are servers. Network administrators use servers to manage security and permissions for all computers per domain. This makes it easier to make changes because the changes are automatically made on all computers. Domain users must provide a password or other credentials each time they access the domain.

If you have a user account in the domain, you can log on to any computer in the domain without an account on that computer.

You can probably only make limited changes to your computer's settings because network administrators often want to ensure consistency among computers.

There can be thousands of computers in a domain.

computers can be in different local networks.

If your computer is on a large network at work or school, it probably belongs to domain. If your computer is on your home network, it belongs to groups and may also belong to home group. When setting up a network, Windows automatically creates a workgroup and names it WORKGROUP.