Agreed, but I don’t call 600pc's + over a 1,000 users a 'small' organisation.
As much as I hate M$ the exams are aimed to reinforce best practices and the solutions most secondary’s implement are most definitely enterprise level.
You can quite legitimately have a need for two (or more) security realms and only a dozen users in each, it doesn’t have to be a multiple site setup at all.
[align=center]- SECURITY REALMS -
That’s the point I was trying to make.[/align]
I’m not saying that two/three/four domains are better than one, that would be evaluated at the design level.
It’s just when people say you ONLY need one domain I can’t stop the little voice inside of me that starts screaming, THAT’S JUST NOT RIGHT. I cant help feeling what these people actually mean ‘I used to have two NT4 domain in the old days, now I only have one. Isn’t it great”
^^^ Please don’t read that as a confrontational post, it's not. I'm just trying to state the security principles behind our setup, we are an inner city school with our share of ’challenging’ students, We also share our plot of land with one of the biggest universities in the area (paranoia mode cuts in when a group of computer science students with laptops start pointing at the wifi aerials lol.)