Understanding Groups in Active Directory

August 29, 2018 / GuidesFor Team

Active Directory simplifies permission management by “Grouping” objects and users. A small company may think that it does not need to “group” its members, but I’m quite sure that the Proprietor/CEO does not want everyone to have access to his file folders. But it is not vice versa.

That is already two different permission settings right away, in a company of two people. In a company of 10,000 where people come and go all the time. Managing it without groups is a practical impossibility. In a whitepaper released by the Bureau of Labor Statistics, It shows that employees stay in a company at the average of 4.2 years. If permissions are set per user in a large company, then the system administrators will spend his entire work day just doing that.

Groups, however, can be made to add and remove members.  The same works when a user is removed. Everything becomes more simple, convenient, and secure.
– Miyagi Kazuki

Read the source article at InformIT

Posted In: