Active Directory at UNC

Overview

Information Technology Services maintains the ad.unc.edu Active Directory domain.  Active Directory Domain Services is the foundation for Windows computing, enabling centralized, secure management of computing resources, including authentication, authorization, and security policies.  Important components of Active Directory include:

  • Lightweight Directory Access Protocol (LDAP)
  • Kerberos
  • Domain Name System (DNS)
  • Distributed File System (DFS)
  • Group Policy

The ad.unc.edu domain is managed by the ITS Global Systems group in partnership with departmental IT organizations across campus.  Departmental IT organizations may request their own organizational unit for managing computers, servers, groups, policies, and special purpose users.  An organizational unit is a point of delegation, allowing departmental administrators to manage their own space in Active Directory.  ONYEN user accounts are created and updated automatically via integration with UNC’s identity management system.  Baseline security policies are maintained based on best practices, campus policy, and recommendations from ITS Information Security.  Governance for the ad.unc.edu domain is provided by the ITEC IT Infrastructure Coordinating Committee (IICC).

More Information

To learn more about the Active Directory service at UNC or to request an organizational unit, refer to the SLA and the ad.unc.edu Administration Manual.