Suppose you are a system administrator of a global organization which has 3 different sites across the world. In each site, there is a tech-support team to handle daily computer tasks such as system installation, and there is a team in headquarters to deal with computer tasks across the company. Also, all users' requests would dispatch to any tech-support. How you design the AD?
One simple solution is like below -
Admins (OU)
- Support HQ (Group)
- Support B1 (Group)
- Support B2 (Group)
- Support B3 (Group)
- Support All (Group)
Computers (OU) - Support HQ would be delegated control
- B1 (Group) - Support B1 would be delegated control
- B2 (Group) - Support B2 would be delegated control
- B3 (Group) - Support B3 would be delegated control
User Accounts (OU) - Support All would be delegated control
No comments:
Post a Comment