Cornell Project Management Methodology (CPMM)
Active Directory Governance Council
Charter
OIT Security
Project Name:
Business Unit / Program Area (Customer):
Executive Sponsor:
Project Director (Sponsor):
Organization:
Project Manager:
Proposed Project Start Date:
Proposed Project End Date:
Key Contact, Phone #
Date Submitted:
Date Approved:
Version:
Last Updated:
CPMM Project Initiation Plan
Version: August 3, 2005
Active Directory Governance Council
Identity Management
Steve Schuster
Andrea Beesing
OIT Security
Tom Parker
June 6, 2009
August 31, 2009
Andrea Beesing, 254-7441
1.0
May 29, 2009
Appendix 2-1
Cornell Project Management Methodology (CPMM)
Contents
Change Record.............................................................................. ii
Executive Summary ...................................................................... 1
Goals and Objectives.................................................................... 1
Project Scope ............................................................................... 1
Stakeholder Roles and Responsibilities........................................ 3
CPMM Project Initiation Plan
i
Appendix 2-1
Cornell Project Management Methodology (CPMM)
Change Record
Date
5/29/09
Author
Andrea Beesing
CPMM Project Initiation Plan
Version
1.0
First draft
ii
Change Reference
Appendix 2-1
Cornell Project Management Methodology (CPMM)
Executive Summary
Cornell University has committed to a campus productivity enhancement project based primarily on
Microsoft Active Directory 2008 and Exchange 2007. The Active Directory component will be
available to support the Exchange deployment targeted to begin September 2009. Active Directory as
a service offering to campus units is planned for early 2010. At that time units which are now running
their own Active Directory instance can choose to migrate to the centrally-managed service. Likewise,
campus units which have not deployed their own Active Directory instances may obtain their own
Organizational Unit (OU) within this new campus AD forest.
An important goal of the Active Directory deployment is to delegate as much local authority as
possible to the campus units, while maintaining a robust, secure infrastructure which adheres to
University policy and industry best practices. In this model the central IT organization, Cornell
Information Technologies (CIT) would manage server components, Active Directory software
versions, the directory schema, provisioning of directory data from campus identity repositories,
integration with central (Kerberos) authentication, the delegation of authority to campus units for
managing Active Directory within their own OU’s, and customer support for campus Active Directory
administrators. CIT would provide tools to assist AD administrators in the form of software,
documentation and guidelines for managing group policy objects (GPO’s).
The need for a governance group to effectively manage this shared resource was identified during the
Ensemble project planning phase.
Goals and Objectives
Overall Goal: Define the composition, roles and responsibilities, and authority for a governing body
for the campus Active Directory service.
Specific Objectives
Table 1: Objectives
Objective
1.
Stewardship of campus
resources for managing
Active Directory
2.
Sustainability of the shared
Active Directory service
Description
Ensure maximum benefit from campus resources focused on
managing Active Directory in a shared environment.
Provide a forum for campus stakeholders to work together to
ensure that the shared Active Directory service meets their
needs now and into the future.
Project Scope
Complete the following aspects of scope that further define this project.
Functional Scope
The functional scope defines the business functions and processes that are to be defined or
supported by this project.
Table 3: Functional Scope
In Scope
Governance council logistics:
Out of Scope
CPMM Project Initiation Plan
1
Uncertain
Appendix 2-1
Cornell Project Management Methodology (CPMM)
In Scope
Out of Scope
frequency and duration of
meetings, decision-making
process, communication
mechanisms
Process for requesting and
Day to day operational support
reviewing exceptions to the
for Active Directory
standard campus service
offering
Standards and best practices for
naming Active Directory objects
Process for requesting and
reviewing schema changes
Best practices for Active
Directory security
Processes for handling
situations where automated
provisioning processes do not
match the IT support
environment.
Processes for provisioning and
de-provisioning of group policies
Define maintenance windows
and processes for
communicating changes to the
campus
Uncertain
Organizational Scope
Define all organizational units considered in any way to be involved in this project in the table below.
Table 7: Scope—Organizational Scope
In Scope
Out of Scope
Uncertain
OIT Security
CIT Systems & Operations
(Messaging)
Campus colleges and units
with ITMC representation
Key Deliverables
To be determined by the governance council.
Milestone Schedule
To be completed with the assistance of the governance council.
Table 8: Milestone Schedule
Milestone
CPMM Project Initiation Plan
Completion
Date
2
Appendix 2-1
Cornell Project Management Methodology (CPMM)
Stakeholder Roles and Responsibilities
Table 9: Stakeholder Roles and Responsibilities
Role
Who
University
Role
AD Service
Andrea
Asst Dir, IT
Owner
Beesing
Security
Exchange
Chuck
Asst Dir,
Service Owner
Boeheim
Systems &
Operations
Campus unit
governance
council member
CPMM Project Initiation Plan
3
Responsibilities
Chair governance council meetings
Appendix 2-1