Case for Multi-Domain/Forest Model
Advantages and Disadvantages
Why have multiple domains or forests
• Isolation of data and service– Data and services must be protected
• Autonomy of operation– Domains require different levels of security &
services– Specialized operations
• “Acquired” resources
NTAdmin
(employee)
NTStudent Life(academic)
NTLearning
lab(academic)
NTCIS
(academic)
NT Com/Hum/Bus
(academic)
NTStudent
NTFt. Lupton(academic
Admin)
NTLoveland
(academicAdmin)
NTCED
Admin
Creative LearningFt Lupton
Academic
Creative LearningGreeley
One Way Trust
One Way Trust
AD integrated App
AD authentication and security for Nursing Dept. video capture system.
Admin Academic
Problems to deal with..Disadvantages
• Integrations of DNS operations to assure that cross-domain access resources
• The increased complexity of the security configurations. More access control lists to deal with but easier access .
• More complex monitoring of the security.
Admin Academic
Ways around the Disadvantages
• Some solutions: Utilize server virtualization to reduce hardware and operating costs.
• Centralized printing.• Delegated Active Directory operations.. Knowledge transfer of A.D.
operations to junior staff and to students
Admin Academic
The Future Projects for Active Directory• Print Management… RFP in progress• Microsoft Exchange… • Secure Wireless Access to Admin … using AD integrated PKI• Desktop Encryption … using AD integrated PKI
YES!
The end result was worth the work
Questions?
Top Related