David Bell wrote an interesting piece in Secure Computing on how to avoid flaws in Identity Management. The part that I really liked was how he pointed out that the IT security industry is focusing its efforts on “where” enterprises keep their critical data instead of “who” has access to it. It is this “who”…
I’m listening to an interesting webinar about backing up and recovering Active Directory. They make a lot of great points about why to buy a third party tool instead of relying on built in free tools. I’m sure they’re right but one of the things that caught my attention is that the built in free…
Our blog usually addresses a technical audience, but this time my message is a bit more focused on one of the business units that IT supports. Human Resources and IT can and should work together. As I have written before, the roles of the organizations are somewhat similar, and they often must work together. What…
This is one of my favorite case studies because it solves two common problems, keeping both IT and end users productive. Managing Active Directory can take up a lot of IT’s time, making sure that users and groups are accurate and useful. And when IT’s manual processes miss something, end users’ productivity goes down. “With nearly…
I just read a great article by Rick Vanover called, Windows security groups: To nest or not? He asks the question because a nested security can be a bear to troubleshoot if you start getting quirky permissions issues. In the article Rick states, “I would love to say that nesting group membership is prohibited, but there are…
Every once in a while I find myself describing a dynamic Active Directory group as “query based.” This always begs the question, how does this dynamic group differ from Microsoft Exchange’s Query Based Distribution List (QBDL)? It is actually a pretty simple answer, when GroupID Automate creates a dynamic group, it actually creates the group…