project database

How to make a Query Based Security Group

It has long been accepted that Microsoft’s Query Based Distribution Lists are a bad idea.  It just doesn’t make sense to run a big query against Active Directory every time you want to email the list.  In the same vein, Microsoft doesn’t even offer a Query Based Security Group; can you imagine the chaos every…

project database

What are Identity Management Solutions?

Defining identity management exactly is an interesting question.  In many ways the definition is completely different from organization to organization and vendor to vendor.  Wikipedia (the authoritative source of collective watered down wisdom) says: Identity management is a broad administrative area that deals with identifying individuals in a system and controlling access to the resources…

project database

The only constants are changes in Active Directory

Change in Active Directory is a constant never ending thing.  That’s my quote, not very literary, but let me temper it with these classics: “It is change, continuing change, inevitable change, that is the dominant factor in society today.”  –Isaac Asimov “There is nothing permanent except change.”  – Heraclitus “When it’s time to change, you’ve…

project database

Turn on the Active Directory provisioning cycle!

I saw an interesting article recently from WindowsIT Pro Magazine that asked if your organization was prepared for what could very likely be a year of greater than normal employee turnover. Then, I got an email from LinkedIn that pointed out all of my contacts who had changed jobs in the past year.  That number…

project database

Active Directory Buffet – take what you need

I saw a couple of things in the media this week that made me think about the value of specialization. The first was a Charlie Rose interview with Jack Dorsey, the founder of Square.  In the interview Jack talks about how difficult it is to create simple solutions in a complicated world. The second was…

project database

Provisioning users in Active Directory

Everybody knows you have to get users in Active Directory.  With the incredible market share that Active Directory has, it’s just the first step to doing anything for the vast majority of organizations.  When an employee starts, you want that employee as a user in Active Directory immediately so they can start working. Incredibly, this…

project database

Active Directory groups v. SharePoint groups: poll results

A quick story.  Two blogs run the same poll about securing SharePoint using groups.  One blog is SharePoint-centric.  The other blog is Active Directory-centric.  The question that has been on everybody’s mind is, how will the results differ? The question was simple: do you use Active Directory groups, SharePoint groups or both to secure site…

project database

Is your Active Directory data accurate?

When was the last time you checked to see if your Active Directory user accounts matched your HRIS?  What about a quick check to see if everyone had the correct department, phone number, or if they even had a mobile phone listed? There are obvious security advantages to having the correct accounts have access to…

project database

Ten ways IT is like football

I am a huge college football fan. It’s the NFL playoffs, and now, because the BCS National Championship game is taking forever all I can think about is football. It’s so bad that I have cobbled together ten ways that IT is like football… 10.  Without proper attention agile and nimble can easily become slow…

project database

’tis the season for AD & SharePoint admins to get along

‘Tis the season of holiday cheer and peace on Earth, so it seems the right time to ask why can’t Active Directory and SharePoint administrators be friends? They seem to play with the same things. Our research shows that more than 85% of companies are using Active Directory security groups to provide permission to SharePoint…