Administrators are well aware of the fact that users and groups occupy different levels of their organization’s hierarchy and do not all have the same privileges. Some accounts demand a stronger password policy than others for obvious security reasons.
Group Policy in Active Directory (AD) simplifies the administrative burden and makes management a whole lot easier. When an administrator needs to control and configure settings on a local computer that is not part of AD, settings specific to that computer can be configured in the Local Group Policy.
With so many moving parts related to AD, it is important to know how to monitor, report, fix, and diagnose issues related to the different supporting technologies. Identifying bottlenecks and resolving them before they cause much harm improves productivity, efficient usage of resources, consistency of data and services, and reduces the number of help desk tickets.