Solved

Typical day in Active directory Engineer

Posted on 2016-07-25
2
79 Views
1 Endorsement
Last Modified: 2016-07-28
Hello Experts,

I am in the process of helping one of my HR colleagues with the definition of tasks & projects performed by the active directory team [including tier 1, 2 and 3], and we need your help to provide the following information:

Define daily/weekly/monthly tasks performed by Tier 1 and Engineers 1

Same as above but for Tier2 and 3 teams

Anticipate projects that AD team might be involved[high level description]

What I would love to see is something like that:

Tier 3

Standard daily task:  Monitor de AD replication; Check DNS/System performance among all domain controllers.

Project : Upgrade the active directory for 2012 R2


I need to cover every single aspect of Directory services per team, Active directory, Federation services, Azure, PKI, ADDS, ADDS, LDAP, AD domain and trust, SSL, and so on. Consider hybrid and on premises environments please

Please, provide as much details as you can. Don't be too generic or attaching only links. Please, elaborate on your answers
1
Comment
Question by:Jerry Seinfield
2 Comments
 
LVL 17

Accepted Solution

by:
Emmanuel Adebayo earned 500 total points
ID: 41728546
Hi,

Please find below as requested.
Tier 1 AD engineer Responsibilities.
Based on experience there is nothing much Tier1 AD can do because of the importance and dependability of AD infrastructure in an organisation or an establishment
Daily routine tasks include:
  • Perform & Verify backups.
  • Check available disk space.
  • Verify network connectivity and services. Verify that network connectivity (LAN, WAN, Internet) is functional and that network services are available (DNS, DHCP, proxy). Use Ping, Ipconfig, Tracert, System Monitor.

All these can be deployed as Admin scripts - Powershell etc

These tasks can be converted to weekly and monthly.

Tier 2 AD engineer Responsibilities.
  • All Tier 1 AD engineer responsibilities
  • Site basics and replication topologies, processes, and diagnostics
  • Group Policy architecture, planning, management, and diagnostics
  • Security and permission architecture and management scenarios
  • Creation of subOUs, groups, and appropriate security permissions.
  • Manage the Users and Computers Containers

Tier 3 AD engineer Responsibilities.
  • All Tier 2 AD engineer responsibilities
  • A detailed drill-down to the schema, and practical strategies and examples for extending it
  • Using Active Directory hierarchies to implement an effective structure for your network
  • Document and standardise standards for provisioning, operations and maintenance of Active Directory
  • Secure remote administration of the DCs and member servers managed by the Infrastructure Group
  • Manage group policy at root of domain and for Domain Controllers OU
  • Install and manage security reporting tools used to monitor changes to the Active Directory
  • Coordinate and configure alarm distribution to OU Admins for OU-related events
  • Plan and manage all migrations and upgrades related to the AD or the DCs
1
 

Author Comment

by:Jerry Seinfield
ID: 41729460
Thanks Enmanuel, very valuable information

Anyone from the Azure/Federation team? Any thoughts about PKI and security team?
1

Featured Post

Instantly Create Instructional Tutorials

Contextual Guidance at the moment of need helps your employees adopt to new software or processes instantly. Boost knowledge retention and employee engagement step-by-step with one easy solution.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A project that enables an administrator to perform actions within a user session context not just at the time of login but any time later on day(s) or week(s) later.
Do you know what to look for when considering cloud computing? Should you hire someone or try to do it yourself? I'll be covering these questions and looking at the best options for you and your business.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question