Download
1 / 11
110 likes | 218 Vues
This document outlines the significant organizational transformation achieved through the implementation of Microsoft Active Directory (AD) services in a large school district. Managing over 30,000 networked devices and 40,000 student net storage accounts, the transition to AD aims to improve network performance, user management, and data security. By centralizing administration and leveraging Group Policies, the district enhanced security, streamlined software deployment, and simplified user access. Lessons from the AD pilot at five campuses highlight both the benefits and challenges encountered during the transition.
E N D
Enhancing Network Services and Efficiencies Microsoft Active Directory (AD) Services
Background • 30,000 networked Desktop Computers/Laptops • 100% increase in 5 years • 11,000 Staff Network Accounts • 40,000 Student NetStorage Accounts • 300 Campus Servers • 2,500 Switches • 40,000 e-mails per week • 7,000+ wireless access points
Rationale for Change • Customer requirements • Network performance • Increasing licensure costs • Vendor support • Need for simplified network administration/manageability for a very large school district • Network and data security • Hardware and software interoperability
User and Directory- Resource Enabled Management Infrastructure Centralized Directory Management Directory- Security Enabled Services Applications Multi-Purpose Directory Service What is Microsoft Active Directory Service?
Benefits for End-Users • More applications support Microsoft AD than Novell eDirectory • Positions District more favorably for simplified sign-on • More powerful desktop management • Provides more stable environment • Improves capability to support overwhelming growth in software products by utilizing remote software installation mechanisms
Benefits for End-Users (con’t) • Enhanced security – limits ability of viruses or other malware to be installed (unintentionally or intentionally) • Eliminates need for Deep Freeze (via Use of Group Policies) • Better way to deploy software packages • eFiles – Remote File Access for Staff (e.g. Home and Shared Drive access from Home) • Better Software Inventory Capability
CO Reduced TCO Flexible Administration Simplified Administration Campus Dept User1 Computer1 User2 Printer1 Scalability Other Benefits of Microsoft Active Directory (AD)
NISD Domain OU1 OU2 OU3 TM 1 2 3 Windows Server Enforces Continually Simplified Administration = Group Policy • Group Policies are used to: • Manage users and computers • Deploy software • Enforce security settings on desktops • Enforce a consistent desktop environment 1 2 3 Apply Group Policy Once
Current NISD Group Policy Uses • Auto Login Student PC’s every morning • Turn PC’s off every evening • Install applications on every PC over network without touching the PC • Limit software installations by non-technology staff • Manage District wireless profiles
Flexible Administration Deployment Fewer images Fast distribution and installation; eliminate manual error Management Automation provides patches and applications on-demand Central management through Group Policy Servicing Remote Assistance Consistent, predictable environment
Results of 2006-2007 AD Pilot at Five Campuses • Positives • Ensure software compliance by managing authorized software installations • Software can be pushed overnight and is installed as needed throughout the entire campus • No need for Deep Freeze • Computer configuration remains constant • Lower number of work orders for PC’s • Negatives • Not all software “automatically works” and needs to be evaluated before it can be installed • Special access requirements for non-campus staff
