Active Directory at UNC


Information Technology Services maintains the Active Directory domain.  Active Directory Domain Services is the foundation for Windows computing, enabling centralized, secure management of computing resources, including authentication, authorization, and security policies.  Important components of Active Directory include:

  • Lightweight Directory Access Protocol (LDAP)
  • Kerberos
  • Domain Name System (DNS)
  • Distributed File System (DFS)
  • Group Policy

The domain is managed by the ITS Global Systems group in partnership with departmental IT organizations across campus.  Departmental IT organizations may request their own organizational unit for managing computers, servers, groups, policies, and special purpose users.  An organizational unit is a point of delegation, allowing departmental administrators to manage their own space in Active Directory.  ONYEN user accounts are created and updated automatically via integration with UNC’s identity management system.  Baseline security policies are maintained based on best practices, campus policy, and recommendations from ITS Information Security.  Governance for the domain is provided by the ITEC IT Infrastructure Coordinating Committee (IICC).

More Information

To learn more about the Active Directory service at UNC or to request an organizational unit, refer to the SLA and the Administration Manual.