User & Group Management
User & Group Management
The User & Group Management department is responsible for the centralized creation, modification, and removal of user accounts and access rights across the company’s IT environment. This ensures that all employees have appropriate access to systems, applications, and resources while maintaining security and compliance.
Infrastructure Overview
-
Internal Domains – The company operates two separate internal domains:
-
TS Domain – IP: 192.168.10.24, managed by its own domain controller.
with users list:ab_domain_users.txt , computer list: , and GPO: ts_GPO.txt -
AB Domain – IP: 10.13.14.100, managed by a dedicated domain controller.
with users list: ab_domain_users.txt, computer list: ab_computers.txt, and GPO: ab_GPO.txt
-
-
Domain Controllers – Each domain has a separate controller that enforces policies, manages authentication, and synchronizes user data.
Key Functions
-
User Account Management – Creating new accounts, modifying existing accounts, and disabling or removing accounts when needed.
-
Group Management – Creating and managing security and distribution groups to control access to resources.
-
Access Control – Assigning permissions based on roles, departments, or projects.
-
Password & Policy Enforcement – Applying company-wide rules for password complexity, expiration, and multi-factor authentication.
-
Cross-Domain Coordination – Ensuring proper access when users or resources span both TS and AB domains.
Objectives
-
Maintain a secure and organized system of user accounts and access rights.
-
Simplify administration across multiple domains through centralized processes.
-
Ensure compliance with company security policies and regulatory requirements.
-
Provide timely and accurate provisioning or removal of access to support business operations.