Office of the Chief Information Officer

United States Department of Agriculture

Enterprise Active Directory (EAD)

A worker looking at a computer monitor

 

EAD brings a consolidated secure Active Directory to USDA for more than 130,000 people providing consistent security posture and a common user environment.

 

Service Description

Enterprise Active Directory (EAD) is an information technology platform used by all USDA organizations. EAD is managed by OCIO for the benefit of all agencies. The core support Administration and Support are provided by ITS and several optional services are available. Optional migration software will facilitate and simplify the migration of user objects from the agency AD into the new EAD, and will likely save many person hours of effort through automation. Also available are professional services to support agencies in completing the tasks necessary for migration into the EAD, and to perform the actual migration including contract support for the EMS-CS (Office 365) integration that must be accomplished after migration to the EAD.

What is included

  • Active Directory Infrastructure: The server infrastructure needed to support the enterprise active directory.
  • Authentication Services: Kerberos V5 authentication services for Windows and Macintosh computers.
  • System Updates and Patches: Maintenance of current system updates and patches to ensure the environment remains current and secure.
  • System Redundancy: Multiple domain controllers will exist throughout the domain providing active redundancy throughout the enterprise.
  • System Backup/Restore: Routine backup of AD configurations and data to ensure timely restore in the event of a critical system failure.I
  • nternal PKI Services: EAD provides machine, EFS, SSL and code signing certificates.
  • Tier 3 Support: Tier 3 support is provided by the EAD staff under this agreement to agency IT staff.
  • Identity and Credential Access Management services included: A core connection to EEMS is provided to allow automated provisioning and deprovisioning.
  • Standardized Platform: The EAD provides a standardized platform for delivery of Enterprise Services such as cloud computing. This will significantly reduce the effort and cost of implementing future Enterprise Services.

How We Charge

The costs and pricing for FY 2013 is under development.  This offering will be updated as this is prepared early in FY 2013.

Service Level Metrics

Measure Target SLA
Active Directory Service Availability

Sun-Sat, 0000-2359

99.9%

Cost Savings Tips

  • Remove unused user objects.
  • Use of Identity and Credential Access Management (ICAM) services for provisioning and deprovisioning can reduce your internal management overhead.
  • Anticipated reduction in costs in FY 2014 for all EAD participating agencies.
  • Reduce local domain controllers.