When you deploy the individual servers, you create them in the default computer's organizational unit (OU), configure them, and then move them into the specified destination OUs. You then follow steps to secure your Active Directory installation.
If you chose to deploy the Microsoft Provisioning System (MPS), the MPS Deployment Tool automatically creates the Servers OU Hierarchy and secures Active Directory service automatically when you deploy MPS.
|By default, Active Directory features in Microsoft Windows Server 2003 include the Authenticated Users group as a member of the Pre-Windows 2000 Server compatible access security group. In order for the security settings to be applied to the Active Directory OU structure to function correctly, the Authenticated Users group must be removed from the Pre-Windows 2000 Compatible Access security group.
The following figure illustrates the servers OU hierarchy in Active Directory once the servers have been moved into their correct OUs.