UF Active Directory

UF will create an enterprise Active Directory to capitalize on its large investment in Windows resources.

Vision Statement

The current University of Florida computing environment includes a wide range of Microsoft products and desktop operating systems, spread across many Domains or Workgroups. These distributed computing systems have de-centralized systems management. This leads to redundant management tasks, reduced interoperability, isolation from other systems, and increased total cost of ownership. While this committee recognizes that a single centralized and homogeneous network system isn't currently feasible here, it recognizes the need for like systems to share resources and interoperate to a much greater degree. It is our ultimate vision to unify these systems under a common Active Directory that will allow them to work together, without sacrificing autonomy and control over local computing resources. This integration will immediately serve to enhance the effectiveness of the current ERP project initiative, both during the development phase and later as an integral part of ERP product delivery. In the future, it will enhance security and stability by facilitating best practices across management domains, and provide a cost-effective platform for future enterprise development.

This committee aspires to develop within the University of Florida a Microsoft computing environment that provides its users with single sign-on authentication to access applications, services and shared resources, both under Active Directory and other platforms. The system will incorporate heightened security by providing for multiple authentication protocols. It will interoperate with the existing campus Kerberos system, and provide for the use of X.509 certificates and smartcards in other security applications. It will most certainly support a unified directory populated with useful data derived from the central ERP system as it develops. This environment will also include integrated email and calendaring for those who participate in the central Active Directory, and it will interoperate with all other sanctioned campus calendaring and email systems. This system will support distribution of client based software and tracking of university-managed central licenses.

While a central Active Directory can't be everything to everyone, it will be a critical element supporting the University of Florida's drive to transform higher education with advanced technology.

Creating the Active Directory

To create the Active Directory, UF will enagage a consulting firm to develop an initial design and migration plan. Additional people will be hired to maintain the design, work with units, and administer the Active Directory. The Active Directory will be fully integrated with other university directory activities. See The UF Directory Project for additional info.

Project Updates

December 15, 2002: Dimension Data
Dimension Data will begin work on January 7. A public meeting for all interested system administrators will be held on January 9 (time of day and location TBA) to introduce Dimension Data and their project lead Chris Bushong (see profile), present a framework for the project, discuss concerns, needs, and requirements, and solicit volunteers to help with the design.
Project Goals
Dimension Data has requested a set of project goals in addition to the Vision Statement. Please see draft goals (Word). These are draft goals. Please send me your ideas and I will revise as needed. The goals cover the period of the Dimension Data engagement and are expected to be completed by March 1, 2003.
Hiring
Four good candidates have been identified for the AD lead position. I will ask several members of the working group to serve on a search committee to recommend final candidates to me. I would like to conduct interviews over the break and have a person in place by January 6.
Equipment
Two servers have been ordered. See equipment details.
December 4, 2002: This site is created to help provide information regarding the project. Quotes for hardware have been obtained. Applications for AD Lead have been received.
November 24, 2002: Specs for domain controller hardware are available.
November 20, 2002: Dimension Data (www.didata.com) selected as the consultants for the UF Active Directory Project.
November 13, 2002: Working Group meeting at Union Street Station. Discussion of scope of consulting engagement and nature of active directory positions.
October 18, 2002: Active Directory Town Hall meeting at the Reitz Union.
September 27, 2002: Working Group meeting at Turlington. Completion of Vision Statement.
September 20, 2002: Working Group meeting at Turlington. Work on Vision Statement.

Additional Info and Related Sites

To stay current, please subscribe to ACTIVEDIR-L@lists.ufl.edu