?
Solved

Typical day in Active directory Engineer

Posted on 2016-07-25
2
Medium Priority
?
94 Views
1 Endorsement
Last Modified: 2016-07-28
Hello Experts,

I am in the process of helping one of my HR colleagues with the definition of tasks & projects performed by the active directory team [including tier 1, 2 and 3], and we need your help to provide the following information:

Define daily/weekly/monthly tasks performed by Tier 1 and Engineers 1

Same as above but for Tier2 and 3 teams

Anticipate projects that AD team might be involved[high level description]

What I would love to see is something like that:

Tier 3

Standard daily task:  Monitor de AD replication; Check DNS/System performance among all domain controllers.

Project : Upgrade the active directory for 2012 R2


I need to cover every single aspect of Directory services per team, Active directory, Federation services, Azure, PKI, ADDS, ADDS, LDAP, AD domain and trust, SSL, and so on. Consider hybrid and on premises environments please

Please, provide as much details as you can. Don't be too generic or attaching only links. Please, elaborate on your answers
1
Comment
Question by:Jerry Seinfield
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 18

Accepted Solution

by:
Emmanuel Adebayo earned 2000 total points
ID: 41728546
Hi,

Please find below as requested.
Tier 1 AD engineer Responsibilities.
Based on experience there is nothing much Tier1 AD can do because of the importance and dependability of AD infrastructure in an organisation or an establishment
Daily routine tasks include:
  • Perform & Verify backups.
  • Check available disk space.
  • Verify network connectivity and services. Verify that network connectivity (LAN, WAN, Internet) is functional and that network services are available (DNS, DHCP, proxy). Use Ping, Ipconfig, Tracert, System Monitor.

All these can be deployed as Admin scripts - Powershell etc

These tasks can be converted to weekly and monthly.

Tier 2 AD engineer Responsibilities.
  • All Tier 1 AD engineer responsibilities
  • Site basics and replication topologies, processes, and diagnostics
  • Group Policy architecture, planning, management, and diagnostics
  • Security and permission architecture and management scenarios
  • Creation of subOUs, groups, and appropriate security permissions.
  • Manage the Users and Computers Containers

Tier 3 AD engineer Responsibilities.
  • All Tier 2 AD engineer responsibilities
  • A detailed drill-down to the schema, and practical strategies and examples for extending it
  • Using Active Directory hierarchies to implement an effective structure for your network
  • Document and standardise standards for provisioning, operations and maintenance of Active Directory
  • Secure remote administration of the DCs and member servers managed by the Infrastructure Group
  • Manage group policy at root of domain and for Domain Controllers OU
  • Install and manage security reporting tools used to monitor changes to the Active Directory
  • Coordinate and configure alarm distribution to OU Admins for OU-related events
  • Plan and manage all migrations and upgrades related to the AD or the DCs
1
 

Author Comment

by:Jerry Seinfield
ID: 41729460
Thanks Enmanuel, very valuable information

Anyone from the Azure/Federation team? Any thoughts about PKI and security team?
1

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Your data is at risk. Probably more today that at any other time in history. There are simply more people with more access to the Web with bad intentions.
Compliance and data security require steps be taken to prevent unauthorized users from copying data.  Here's one method to prevent data theft via USB drives (and writable optical media).
This Micro Tutorial will explain how to export DynamoDB tables in Amazon Web Services.
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question