This section contains TTUnet Windows Active Directory Architecture. If you have
questions about the information contained herein, please contact the Director of Telecommunications.
- A hierarchical Active Directory structure within
a single production Windows domain which follows the Internet DNS naming scheme.
- Telecommunications will provide and maintain all Active Directory
services on the Texas Tech University network.
- Provide for a university-wide, single sign on authentication
structure which Windows system administrators can join and utilize for granting
access to their resources.
- Provide a secure Kerberos authentication environment.
- Departmental resources should be located within the appropriate OU
- The OU naming scheme follows network department codes
(e.g. ou=dept,dc=ttu,dc=edu or ttu.edu/dept).
- Departmental OUs are created upon appointment of one or
more Network Site Coordinators (NSCs).
- NSCs are delegated full control of the associated OU.
OU Naming Standard
The current naming scheme utilizes a "departmental" (includes colleges & divisions)
name immediately preceding the 'TTU.EDU' domain name. A
list of the departmental codes and descriptions is
available online. Active Directory Organizational Units will follow
the same naming scheme (e.g. OU = <dept>.ttu.edu)
Consolidating the Windows Active Directory Structure
Non-sanctioned Windows domain and Active Directory structures must
consolidated into Texas Tech University's TTU.EDU Windows domain. In order to
facilitate the migration of non-sanctioned Windows domains into the
AD structure, temporary trusts may be assigned. These temporary
trusts allow system wide authentication access while migrating to an
organizational unit. Trusts will only be allowed with the TTU.EDU
Active Directory Domain during a migration scenario.