Active directory is an advanced, hierarchical Microsoft directory service used to store and retrieve data about users, groups, computers, printers, resources, buildings, etc. Active Directory can be used to store information about objects, assign access to network resources, send emails to a group of people, and much more.
- Easily queryable: Able to locate an object by querying its properties and can handle a high number of concurrent reads.
- Highly available: Able to locate a replica of the entire directory at separate locations to allow for redundancy that is efficient for read/write operations.
- Tightly integrated: Active Directory Domain Services implements its features in accordance with published Internet standards such as Lightweight Directory Access Protocol (LDAP) and Domain Name System (DNS), allowing for third party applications to easily integrate with Active Directory.
- Security focused: Allows for modern authentication standards such as Kerberos, Secure Sockets Layer (SSL), or a combination.
- Extensible and customizable: The Active Directory Schema is rich. Most of the objects and properties a service requires are available. If not, a distributed application can extend the schema to support the application requirements.
Faculty, staff, and students
All SUNet IDs have some access to Active Directory. To request additional permissions please submit a Help request.
Free of charge
For assistance accessing directory information or to discuss integrating with a third party application please submit a Help request.
For assistance, submit a Help ticket.
- Abbreviated Guide to the Windows Infrastructure
- Group Policy Object Processing Order
For IT providers (restricted access)
- Information for IT Implementors
- Administrative Guide to the Windows Infrastructure
- Administrative Guide to the SU Domain
- Administrative Guide to the IT Domain
- Policy Guide for Administrators of the Stanford Windows Infrastructure
- Active Directory Schema
- Controlling Local Group Membership with GPO
- Logon Script to Map Drives and Printers in GPO
- Details for Help Requests