This active directory work program focuses on the user ID creation aspect of user management/administration. It includes the key control questions, the preferred controls/goal state for production and intent/status of designed control for each question.
Sample control questions include: Are the company's user security principles communicated to users before they are permitted access to the system? Has user access been restricted to the minimum set of privileges needed to carry out duties, on a "need-to-know" or "need-to-do" basis? Have users been organized into sensible and well-structured groups for control and management purposes, and are all users granted unique user accounts?