Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Typical day in Active directory Engineer

Posted on 2016-07-25
2
Medium Priority
?
105 Views
1 Endorsement
Last Modified: 2016-07-28
Hello Experts,

I am in the process of helping one of my HR colleagues with the definition of tasks & projects performed by the active directory team [including tier 1, 2 and 3], and we need your help to provide the following information:

Define daily/weekly/monthly tasks performed by Tier 1 and Engineers 1

Same as above but for Tier2 and 3 teams

Anticipate projects that AD team might be involved[high level description]

What I would love to see is something like that:

Tier 3

Standard daily task:  Monitor de AD replication; Check DNS/System performance among all domain controllers.

Project : Upgrade the active directory for 2012 R2


I need to cover every single aspect of Directory services per team, Active directory, Federation services, Azure, PKI, ADDS, ADDS, LDAP, AD domain and trust, SSL, and so on. Consider hybrid and on premises environments please

Please, provide as much details as you can. Don't be too generic or attaching only links. Please, elaborate on your answers
1
Comment
Question by:Jerry Seinfield
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 18

Accepted Solution

by:
Emmanuel Adebayo earned 2000 total points
ID: 41728546
Hi,

Please find below as requested.
Tier 1 AD engineer Responsibilities.
Based on experience there is nothing much Tier1 AD can do because of the importance and dependability of AD infrastructure in an organisation or an establishment
Daily routine tasks include:
  • Perform & Verify backups.
  • Check available disk space.
  • Verify network connectivity and services. Verify that network connectivity (LAN, WAN, Internet) is functional and that network services are available (DNS, DHCP, proxy). Use Ping, Ipconfig, Tracert, System Monitor.

All these can be deployed as Admin scripts - Powershell etc

These tasks can be converted to weekly and monthly.

Tier 2 AD engineer Responsibilities.
  • All Tier 1 AD engineer responsibilities
  • Site basics and replication topologies, processes, and diagnostics
  • Group Policy architecture, planning, management, and diagnostics
  • Security and permission architecture and management scenarios
  • Creation of subOUs, groups, and appropriate security permissions.
  • Manage the Users and Computers Containers

Tier 3 AD engineer Responsibilities.
  • All Tier 2 AD engineer responsibilities
  • A detailed drill-down to the schema, and practical strategies and examples for extending it
  • Using Active Directory hierarchies to implement an effective structure for your network
  • Document and standardise standards for provisioning, operations and maintenance of Active Directory
  • Secure remote administration of the DCs and member servers managed by the Infrastructure Group
  • Manage group policy at root of domain and for Domain Controllers OU
  • Install and manage security reporting tools used to monitor changes to the Active Directory
  • Coordinate and configure alarm distribution to OU Admins for OU-related events
  • Plan and manage all migrations and upgrades related to the AD or the DCs
1
 

Author Comment

by:Jerry Seinfield
ID: 41729460
Thanks Enmanuel, very valuable information

Anyone from the Azure/Federation team? Any thoughts about PKI and security team?
1

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In the absence of a fully-fledged GPO Management product like AGPM, the script in this article will provide you with a simple way to watch the domain (or a select OU) for GPOs changes and automatically take backups when policies are added, removed o…
Wouldn't it be nice if objects in Active Directory automatically moved into the correct Organizational Units? This is what AutoAD aims to do and as a plus, it automatically creates Sites, Subnets, and Organizational Units.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

618 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question