security group

Definition of security group in The Network Encyclopedia.

Sponsor: Geeky T-Shirt: Blue Screen of Death (Amazon)

What is Security Group?

One of two types of groups in Microsoft Windows 2000 that are created and stored in Active Directory; the other is distribution groups. Security groups are used for grouping accounts and for controlling access to resources, much in the same way that global groups and local groups are used in Microsoft Windows NT–based networks. (In other words, all groups in Windows NT are security groups.) Security groups are security principals that can contain other security principals such as user, group, and computer objects from Active Directory.

Security groups come in three types:

  • Domain local groups:
    Provide users with permissions to access resources; used only within the specific domain in which they are created


  • Global groups:
    Logically group users for administrative purposes and have visibility in the current domain and trusted domains


  • Universal groups:
    Similar to global groups but reduce global catalog replication traffic when they are used


See also: