Active Directory Policy and Procedures doc or template

Is there a Active Directory Policy and Procedures doc or template? My company is requesting one that includes procedures for user account creation, GPO, DNS, ..etc and also steps in  terminating an admin if they leave the company. Just need some standard doc and I can modify to fit my company's needs.
CiscoAznAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Dean ChafeeIT/InfoSec ManagerCommented:
SANS has many security policy templates. not sure if there is an AD specific one, but here is the directory of them:
https://www.sans.org/security-resources/policies

It's a good start for developing a standards and policy/procedure library.
Regards
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
CiscoAznAuthor Commented:
Thanks but i really need one for Active Directory and they don't have it.
0
Kevin StanushApplication DeveloperCommented:
I'm not sure you are going to find such a single document, as some of the things on your list are going to be company-specific.  Take user management for example.  Some AD installations will use the builtin tools, ADUC/ADAC, while others may use 3rd party tools like ours, Hyena, while others have home-grown powershell solutions.  Some will let just admin create users, while other sites may have delegated rights to other groups and let these non-admin users create them.

For some items like DNS and GPOs, you might be able to find a best-practices document on Microsoft's site, but again, how you configure even those systems are dependent on how you have your directory configured.

Probably searching for 'administrator termination' will yield ideas on policies to know which systems to secure, etc.  If each admin has their own account, and you never use a generic admin account for services and the like, technically terminating an admin would not be much different than any other employee, absent the knowledge.
0
CiscoAznAuthor Commented:
I used the SAN template to help assist me.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.