Solved

Typical day in Active directory Engineer

Posted on 2016-07-25
2
72 Views
1 Endorsement
Last Modified: 2016-07-28
Hello Experts,

I am in the process of helping one of my HR colleagues with the definition of tasks & projects performed by the active directory team [including tier 1, 2 and 3], and we need your help to provide the following information:

Define daily/weekly/monthly tasks performed by Tier 1 and Engineers 1

Same as above but for Tier2 and 3 teams

Anticipate projects that AD team might be involved[high level description]

What I would love to see is something like that:

Tier 3

Standard daily task:  Monitor de AD replication; Check DNS/System performance among all domain controllers.

Project : Upgrade the active directory for 2012 R2


I need to cover every single aspect of Directory services per team, Active directory, Federation services, Azure, PKI, ADDS, ADDS, LDAP, AD domain and trust, SSL, and so on. Consider hybrid and on premises environments please

Please, provide as much details as you can. Don't be too generic or attaching only links. Please, elaborate on your answers
1
Comment
Question by:Jerry Seinfield
2 Comments
 
LVL 17

Accepted Solution

by:
Emmanuel Adebayo earned 500 total points
ID: 41728546
Hi,

Please find below as requested.
Tier 1 AD engineer Responsibilities.
Based on experience there is nothing much Tier1 AD can do because of the importance and dependability of AD infrastructure in an organisation or an establishment
Daily routine tasks include:
  • Perform & Verify backups.
  • Check available disk space.
  • Verify network connectivity and services. Verify that network connectivity (LAN, WAN, Internet) is functional and that network services are available (DNS, DHCP, proxy). Use Ping, Ipconfig, Tracert, System Monitor.

All these can be deployed as Admin scripts - Powershell etc

These tasks can be converted to weekly and monthly.

Tier 2 AD engineer Responsibilities.
  • All Tier 1 AD engineer responsibilities
  • Site basics and replication topologies, processes, and diagnostics
  • Group Policy architecture, planning, management, and diagnostics
  • Security and permission architecture and management scenarios
  • Creation of subOUs, groups, and appropriate security permissions.
  • Manage the Users and Computers Containers

Tier 3 AD engineer Responsibilities.
  • All Tier 2 AD engineer responsibilities
  • A detailed drill-down to the schema, and practical strategies and examples for extending it
  • Using Active Directory hierarchies to implement an effective structure for your network
  • Document and standardise standards for provisioning, operations and maintenance of Active Directory
  • Secure remote administration of the DCs and member servers managed by the Infrastructure Group
  • Manage group policy at root of domain and for Domain Controllers OU
  • Install and manage security reporting tools used to monitor changes to the Active Directory
  • Coordinate and configure alarm distribution to OU Admins for OU-related events
  • Plan and manage all migrations and upgrades related to the AD or the DCs
1
 

Author Comment

by:Jerry Seinfield
ID: 41729460
Thanks Enmanuel, very valuable information

Anyone from the Azure/Federation team? Any thoughts about PKI and security team?
1

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A simple overview of the possibilities of using technology for project management.
Each year, investment in cloud platforms grows more than 20% (https://www.immun.io/hubfs/Immunio_2016/Content/Marketing/Cloud-Security-Report-2016.pdf?submissionGuid=a8d80a00-6fee-4b85-81db-a4e28f681762) as an increasing number of companies begin to…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…

773 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question