Information Technology Services maintains the ad.unc.edu Active Directory domain. Active Directory Domain Services is the foundation for Windows computing, enabling centralized, secure management of computing resources, including authentication, authorization, and security policies. Important components of Active Directory include:
- Lightweight Directory Access Protocol (LDAP)
- Domain Name System (DNS)
- Distributed File System (DFS)
- Group Policy
The ad.unc.edu domain is managed by the ITS Global Systems group in partnership with departmental IT organizations across campus. Departmental IT organizations may request their own organizational unit for managing computers, servers, groups, policies, and special purpose users. An organizational unit is a point of delegation, allowing departmental administrators to manage their own space in Active Directory. ONYEN user accounts are created and updated automatically via integration with UNC’s identity management system. Baseline security policies are maintained based on best practices, campus policy, and recommendations from ITS Information Security. Governance for the ad.unc.edu domain is provided by the ITEC IT Infrastructure Coordinating Committee (IICC).