Generally there is a dedicated AD team for escalated issues (problems/issues) and monitoring (monitoring replication etc)
Common low-level tasks (like resetting passwords, account creation etc) would be handled by various other service desk type teams (usually using some kind of front end tool) - these may not be devoted to Wintel platforms, but might also handle passwords/access/user provisioning to multiple platforms (Mainframe, midrange, Wintel etc) For project work (implementing new features - SSO, self-service PW reset etc), other teams might be involved. Security is generally a platform agnostic unit IME, and doesn't manage AD specifically. It might set general standards and look at some risk issues, but isn't involved in the day-to-day operations of AD. Cheers Ken From: Barsodi.John [mailto:john.bars...@igt.com] Sent: Saturday, 18 April 2009 9:32 AM To: NT System Admin Issues Subject: Active Directory Responsibility question Question for you guys....and this is geared to the people who work in a bit larger IT/IS Organizations. What team within your IT/IS org has responsibility of your active directory environment? I think it's typically in the System Administration realm, but if it's in another group/team i.e. Security - why? Thanks. - John Barsodi ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~