Enterprise Active Directory Service

Enterprise Active Directory (AD) is a tool used to authenticate and authorize users who connect to the University of Pittsburgh network with their University Computing Account username and password. It is available for all units, schools, and departments, most of whom already take advantage of its features.

Enterprise AD also provides a centralized authoritative repository of information about network-based resources (such as computers, printers, applications, and file shares). It simplifies the management of these resources while controlling who can access them.

Users in departments that take advantage of Enterprise AD are able to access all network-based resources using their University Computing Account username and password. (You may have heard this referred to as "single sign-on access.")

Enterprise AD enhances network security by centrally managing and standardizing a number of important security functions, including:

  • Account provisioning: determines who receives a University Computing Account
  • Account lifecycle: determines when an account is activated and, more importantly, ensures it is deactivated when it is no longer needed
  • Monitoring: helps to identify unusual or potentially harmful account activity
  • Logging: provides important historical information about accounts and devices (often useful in investigating computers that have been compromised)

Frequently Asked Questions

Please refer to our FAQ page for answers to the most commonly asked questions about Enterprise Active Directory.