This is my personal Infrastructure— no real company data shown
Hardware
I run a powerful Dell Precision T7910 workstation designed for heavy workloads and virtualization.
- Processor: 2 × Intel Xeon E5-2643 V4 @ 3.40GHz (12 cores total)
- Memory: 128GB ECC RAM for high performance and stability
- Storage: 8TB Storage
- Use case: Hosts virtual machines, containers, file servers, and lab infrastructure
This robust setup allows me to simulate complex enterprise environments with reliability and scalability
Services I run:- 2 Domain Controllers
- ADCS with Certify for CA/SSL
- ADFS Server
- WSUS Server
- File Server (Network Drives tied to Group Policy)
- 2 Application Servers (IIS, PHP, MariaDB, Redis)
- Docker Server (Portainer for dashboards & light apps)
- SharePoint Server
- Moodle LMS Server
- NextCloud Server
- Zammad Server
- Tactical RMM Server
Active Directory
I’ve designed and deployed a production-style Active Directory environment that reflects real enterprise practices and standards.
- Redundant Domain Controllers: Two DCs provide high availability and ensure reliable authentication and directory services across the lab environment.
- Organizational Structure: OUs are logically organized by object type including Users, Computers, Servers, and Security Groups making the environment easy to manage and scale.
- Group Policy Strategy: All GPOs follow a structured naming convention using category codes for clarity and consistency. Examples include:
DWP- Domain Wide PolicyEUD- End User DeviceUSR- User Policy
DWP - SEC - Block Certificates. - Security Groups: I simulate real organizational roles with SGs for users, faculty, and application access. These groups are used for permissions management and integrated into services via LDAP.
- LDAP Integration: Active Directory is used as the identity source for platforms like Zammad, Moodle, and internally developed applications.
- Certificate Services: AD Certificate Services (ADCS) is deployed to manage internal certificates for secure authentication, LDAPS, and HTTPS services.
This setup gives me hands-on experience with real-world AD design, management, and integration — all following structured and scalable IT practices.
Entra & Hybrid Identity
I simulate a hybrid identity setup using Entra ID (Azure AD) connected to on-prem AD for realistic cloud integration.
- Microsoft 365: Licensed tenant for testing SharePoint, Exchange, and user access
- SharePoint: Department sites with group-based permissions
- Exchange: Mailbox creation and DL groups
- Hybrid Identity: Entra Connect sync between AD and cloud
- Conditional Access: Policies for MFA and app control
- Intune: Exploring device management, compliance policies, and MDM
This setup helps me understand identity management across on-prem and cloud environments using real Microsoft services.
Local Services
I run a suite of essential local services to support my home lab and daily workflows, some managed via portainer or dedicated vms
- Portainer: Container management dashboard for Docker environments
- Dashboards: Centralized web dashboards for quick access to services (Flame)
- Vaultwarden: Self hosted Password Manager ensuring secure credential storage
- NextCloud: Private cloud file storage
- Zammad: Ticketing system for internal support and issue tracking
- SnipeIT: Asset management for tracking hardware and software inventory
- Bookstack Wiki: IT documentation and knowledge base platform
This ecosystem enables me to simulate enterprise-grade service management and maintain thorough documentation and asset control.