This repository contains the technical documentation for the IT infrastructure of a small fictional company named E-corp.
The primary purpose of this documentation is to provide a clear handbook and guidelines for future system administrators. The environment has been created with best practices in mind prioritizing security, scalability, and ease of management.
- Scalability & Isolation: Identity services (DC01) are separated from File/Print services (FS01) to prevent single points of failure, minimize the Domain Controller attack surface and allow for scaling.
- AGDLP Security Model: The Account > Global Group > Domain Local Group > Permission model was used. This ensures permissions are never assigned to individual users, keeping the environment clean and manageable as staff changes.
- Automated Management: Software deployment, drive mapping and printer installation are fully automated via Group Policy Objects (GPO). Eliminating the need for manual configuration on every single end device.
The following accounts have been created to allow the external auditor to verify the configuration.
Default Password for all audit accounts: Ecorp@udit2025
| Role | Username | Department |
|---|---|---|
| CEO | auditceo |
Management |
| Sales Staff | auditsalesstaff |
Sales |
| Head of RnD | auditrndhead |
Research and Development |
| RnD Staff | auditrndstaff |
Research and Development - Fidget Spitters |