Overview
Identifying Business Needs
Documenting the Administrative Process:
Level of Administration
Who Administers What
Build Flexibility Into Plan
Characterizing the IT Organization
Centralized IT
Centralized IT with Decentralized Management
Decentralized IT
Outsourced IT
Developing a Strategy for Administrative Design
Designing a Hierarchy Based on Location
Is Resistant to Change
Accommodates Mergers and Expansions
May Compromise Security
Takes Advantage of Network Strengths
Designing a Hierarchy Based on Organization
Reflects Business Model
Is Vulnerable to Reorganizations
Maintains Departmental Autonomy
Accommodates Mergers and Expansions
May Affect Replication
Designing a Hierarchy Based on Function
Is Immune to Reorganizations
May Require Additional Layers
May Affect Replication
Designing a Hybrid Hierarchy by Location then Organization
Allows for Growth
Allows for Security Boundaries
Leverages Strength of Physical Network
May Require Lower Level Changes After a Reorganization
Designing a Hybrid Hierarchy by Organization then Location
Allows for Security Boundaries
Allows Administration by Location
Vulnerable to Reorganizations
Design Guidelines
Hierarchy
Location
Organization
Function
Hybrid Hierarchy
By Location then Organization
By Organization then Location
Developing a Strategy for Delegation
Determining Delegation Methods
Delegating Authority Includes:
Changing Container Properties
Creating, Changing, and Deleting Child Objects
Updating Object Attributes
Creating New Users or Groups
Managing Small Groups of Users or Groups
Determining Object Ownership
Creating a Strategy for Object-Based and Task-Based Delegation
Creating a Strategy for Delegating Authority
Creating Strategies for Inheritance of Permissions
Objects Inherit Existing Permissions
Inheritance Can Be Blocked
Design Choice Guidelines
Assign Permissions at the OU Level When Possible
Avoid Assigning Permissions at Property or Task Level
Use a Small Number of Domain Administrators
Assign Access Permissions to Groups
Demonstration: Using Visio Server