Why do we care about domains? Why is it ok for you to not be on a domain at home, but at work your company makes your work pc join their domain? What’s the point?
How does any of this relate to your future work as IT Auditors?
Domain is important because companies’ PC should join domain in order to allow system administrators to set up usernames and passwords for users. It is okay for my laptop that is not in a domain because my laptop does not need to communicate with my neighbor’s laptop, and I am my own and only laptop’s system administrator, so there is no point to join a domain. However, it is important to join a Domain in a company because the company’s system administrators could setup usernames, passwords, group policy, password policy, and put different groups of users into different groups in order to share information. As IT Auditors, it is critical to audit company’s group policy and password policy to make sure of the security and determine roles and authorization of access.
According to TechTerms, “A domain contains a group of computers that can be accessed and administered with a common set of rules”. I think the reason we need to care about domains for the company’s PC is it is easier for the administrator to manage them. The administrators will have the control to the computers and protect the company information. Also, the employees might need to share some documents inside the company, for example, they could use share drive to obtain the documents. It is also important for IT auditor to know how the company manages their computers. When I’m at home, my laptop doesn’t need to be controlled by anyone else so I don’t need to be on a domain.
Domains are useful in a corporate work environment to control who can access the domain network. Domains help companies give certain privileges to users, such as access to shared databases throughout the company as well as internet access, and may even have “domain privacy” for company or personal information linked to the domain registrar. In a single-family home, a domain is not necessary as there is no turnover of users- only those located within the home itself and potentially guest users who will need to request a password to join the network. Within a home, even if there are multiple computers, these computers are for each user’s personal control, rather than being used to work collectively on certain projects.
IT Auditors should be aware of how a company domain works because this is an easy way to check if there are any users who should not be authorized to access the company’s network. IT Auditors should educate management and system administrators as to the importance of staying up to date with the roster of current employees accessing the company’s network because, even though it may seem farfetched, ex-employees may plan or be able to act maliciously with the authorization they were given and potentially sell the company’s vital information stored within the databases.
Domains is a vital part in the audit process because of its important role in the company’s system. Domains are the most effective way to connect all PCs within the company. The system administrator can easily set up accounts for employees and set permissions without sitting in front of each employee’s PC. The administrator is able to set different levels of permission according to employees’ department and level. Also, the administrator can group people who have the same level of permission to access the system. or download some software for business use. Home computers do not need to be in a domain because all people in your home have the same right to look though all materials on the computer, but employees’ role are different within the company, and they don’t need to or don’t have the right to access all information. I think IT auditors should be familiar with the domains’ function and be able to determine how confidential the information employees can get through the company’s system and whether the authorization is set appropriately.
As I researched, domains are defined by the IP address. For general, all the devices sharing a common part of the IP address are said to be in the same domain. In company, computers and devices are administered as a unit with common rules and IP addresses within the Internet. A business company with its own domain name can fully control and maintain its ownership. It is important for IT Auditors to define the priority.
A domain name is an identification string that defines a realm of administrative autonomy, authority or control within the Internet. All the domain name should follow the rules and be formed by domain name system. a domain name represents an Internet Protocol (IP) resource, such as a personal computer used to access the Internet, a server computer hosting a web site, or the web site itself or any other service communicated via the Internet. Domain names serve to identify Internet resources. It is also used to used as simple identification labels to indicate ownership or control of a resource. At the meantime, domain names provide a easily recognizable name to numerically addressed Internet resources. All these feature is necessary for a company or organization but not home. Company need a significant domain to recognize and remember. Also company has to create a online system based on that domain. IT auditor should know how the domain name works, because it would help them to find unauthorized network joiner in the system and find vulnerable threat much easily.
Shuyue Ding says
Domain is important because companies’ PC should join domain in order to allow system administrators to set up usernames and passwords for users. It is okay for my laptop that is not in a domain because my laptop does not need to communicate with my neighbor’s laptop, and I am my own and only laptop’s system administrator, so there is no point to join a domain. However, it is important to join a Domain in a company because the company’s system administrators could setup usernames, passwords, group policy, password policy, and put different groups of users into different groups in order to share information. As IT Auditors, it is critical to audit company’s group policy and password policy to make sure of the security and determine roles and authorization of access.
Patrick J. Wasson says
Thanks for the comment!
Ryu Takatsuki says
According to TechTerms, “A domain contains a group of computers that can be accessed and administered with a common set of rules”. I think the reason we need to care about domains for the company’s PC is it is easier for the administrator to manage them. The administrators will have the control to the computers and protect the company information. Also, the employees might need to share some documents inside the company, for example, they could use share drive to obtain the documents. It is also important for IT auditor to know how the company manages their computers. When I’m at home, my laptop doesn’t need to be controlled by anyone else so I don’t need to be on a domain.
Patrick J. Wasson says
Thanks for the comment Ryu!
Sarah Puffen says
Domains are useful in a corporate work environment to control who can access the domain network. Domains help companies give certain privileges to users, such as access to shared databases throughout the company as well as internet access, and may even have “domain privacy” for company or personal information linked to the domain registrar. In a single-family home, a domain is not necessary as there is no turnover of users- only those located within the home itself and potentially guest users who will need to request a password to join the network. Within a home, even if there are multiple computers, these computers are for each user’s personal control, rather than being used to work collectively on certain projects.
IT Auditors should be aware of how a company domain works because this is an easy way to check if there are any users who should not be authorized to access the company’s network. IT Auditors should educate management and system administrators as to the importance of staying up to date with the roster of current employees accessing the company’s network because, even though it may seem farfetched, ex-employees may plan or be able to act maliciously with the authorization they were given and potentially sell the company’s vital information stored within the databases.
Patrick J. Wasson says
Good thoughts!
Yuqing Tang says
Domains is a vital part in the audit process because of its important role in the company’s system. Domains are the most effective way to connect all PCs within the company. The system administrator can easily set up accounts for employees and set permissions without sitting in front of each employee’s PC. The administrator is able to set different levels of permission according to employees’ department and level. Also, the administrator can group people who have the same level of permission to access the system. or download some software for business use. Home computers do not need to be in a domain because all people in your home have the same right to look though all materials on the computer, but employees’ role are different within the company, and they don’t need to or don’t have the right to access all information. I think IT auditors should be familiar with the domains’ function and be able to determine how confidential the information employees can get through the company’s system and whether the authorization is set appropriately.
Patrick J. Wasson says
Thanks for the post!
Haixin Sun says
As I researched, domains are defined by the IP address. For general, all the devices sharing a common part of the IP address are said to be in the same domain. In company, computers and devices are administered as a unit with common rules and IP addresses within the Internet. A business company with its own domain name can fully control and maintain its ownership. It is important for IT Auditors to define the priority.
Patrick J. Wasson says
Thanks for the comment!
Yuan Liu says
A domain name is an identification string that defines a realm of administrative autonomy, authority or control within the Internet. All the domain name should follow the rules and be formed by domain name system. a domain name represents an Internet Protocol (IP) resource, such as a personal computer used to access the Internet, a server computer hosting a web site, or the web site itself or any other service communicated via the Internet. Domain names serve to identify Internet resources. It is also used to used as simple identification labels to indicate ownership or control of a resource. At the meantime, domain names provide a easily recognizable name to numerically addressed Internet resources. All these feature is necessary for a company or organization but not home. Company need a significant domain to recognize and remember. Also company has to create a online system based on that domain. IT auditor should know how the domain name works, because it would help them to find unauthorized network joiner in the system and find vulnerable threat much easily.