 |
UA Home |
|
|||||||
|
|
Populating the Active Directory |
|
User Accounts |
|
With the exception of the Enterprise Admin accounts, OU Admin accounts, and Service accounts, all user accounts will reside in the NetID OU. User accounts will only be added, modified or deleted through a replication process with the NetID LDAP directory. No changes to user account information (e.g. account name, password, department, phone number, etc.) will be permitted in the active directory and replication from the LDAP directory to the Active Directory will be unidirectional. All changes to individual user accounts will be performed by the user via a web interface. |
|
Group Accounts |
|
Group accounts may be created as necessary for management of resources within Department managed OUs or Child Domains. All groups will be populated with user accounts from the NetID OU. Many groups will be automatically created and maintained in the Enterprise OUs OU based on data gathered from institutional systems such as PSOS, SIS and UIS; due to the automated creation and maintenance of these groups they will not be available for manual modification. Group accounts that exist in external domains may be migrated into the appropriate OU or Child domain as part of the initial membership process. |
|
Computer Accounts |
|
Computer accounts will be created through the normal process of joining workstations and/or member servers to the domain. All workstation computer accounts will reside in the appropriate OU or child domain delegated to the administrator of the workstations. Depending on its role, a member server may reside in either Enterprise OUs OU or in the OU/child domain delegated to its administrator. Computer accounts that exist in external domains may be migrated into the appropriate OU or Child domain as part of the initial membership process. |