Educause Security Discussion mailing list archives
Re: Active Domain Architecture in an Academic Environment
From: Valdis Kletnieks <Valdis.Kletnieks () VT EDU>
Date: Tue, 28 Sep 2010 20:18:31 -0400
On Tue, 28 Sep 2010 17:42:47 EDT, Dexter Caldwell said:
There are a very few things that you'd need a separate forest for per se.
It doesn't mean it would be the wrong choice, but you have a lot of means of managing security, roles and groups within a simpler design that may more than suffice.
When we set up our main forest many many moons ago, one organization in the
university went to go create their own forest due to mostly political concerns
("We're going to do our own because Central IT can't possibly do it right, for
*our* definition of right"). This was expected, because the attitude had been
there for at least a decade before.
What we did *not* expect was that the same political considerations that
resulted in the creation of multiple forests also made it impossible to agree
on rules of engagement to allow cross-forest trust relationships.
The problem was eventually resolved, but (somewhat predictably) involved the
retirement of multiple high-level people on both sides of the issue.
Attachment:
_bin
Description:
Current thread:
- Re: Quick Survey: How do you "dispose" of outbound hard drives??, (continued)
- Re: Quick Survey: How do you "dispose" of outbound hard drives?? Alan Amesbury (Sep 27)
- Re: Quick Survey: How do you "dispose" of outbound hard drives?? Doty, Timothy T. (Sep 28)
- Re: Quick Survey: How do you "dispose" of outbound hard drives?? Valdis Kletnieks (Sep 28)
- Re: Quick Survey: How do you "dispose" of outbound harddrives?? Michael Schalip (Sep 28)
- Re: Quick Survey: How do you "dispose" of outbound harddrives?? Valdis Kletnieks (Sep 28)
- Active Domain Architecture in an Academic Environment Feehan, Patrick (Sep 28)
- Re: Active Domain Architecture in an Academic Environment Williams, Charles (Sep 28)
- Re: Active Domain Architecture in an Academic Environment Timothy Payne (Sep 28)
- Re: Active Domain Architecture in an Academic Environment Brandon Payne (Sep 28)
- Re: Active Domain Architecture in an Academic Environment Dexter Caldwell (Sep 28)
- Re: Active Domain Architecture in an Academic Environment Valdis Kletnieks (Sep 28)
- Re: Active Domain Architecture in an Academic Environment SCHALIP, MICHAEL (Sep 28)
- Re: Quick Survey: How do you "dispose" of outbound hard drives?? Valdis Kletnieks (Sep 28)
- Re: Quick Survey: How do you "dispose" of outbound harddrives?? Basgen, Brian (Sep 28)
- Re: Quick Survey: How do you "dispose" of outbound hard drives?? David Auclair (Sep 28)
- Re: Quick Survey: How do you "dispose" of outbound hard drives?? Himes, Daniel Jay (Sep 28)
- Re: Quick Survey: How do you "dispose" of outbound hard drives?? Solem, Vik P. (Sep 28)
- Re: Quick Survey: How do you "dispose" of outbound hard drives?? Doty, Timothy T. (Sep 29)
- Re: Quick Survey: How do you "dispose" of outbound hard drives?? Doty, Timothy T. (Sep 29)
- Re: Quick Survey: How do you "dispose" of outbound hard drives?? SCHALIP, MICHAEL (Sep 29)
- Re: Quick Survey: How do you "dispose" of outbound hard drives?? Valdis Kletnieks (Sep 29)
- Re: Quick Survey: How do you "dispose" of outbound hard drives?? John Ladwig (Sep 29)