Analyst firm Giga Information Group reported that large corporate roll-outs of the technology were not being completed because "enterprise customers are encountering serious challenges."
Giga found the issues faced in rolling out the Active Directory included security, domain design, and lack of support for a hierarchy known as multi-forest implementations. This architecture is used for special situations where an organisation needs to keep business operations separate.
It also found that high-end users were experiencing problems in replication and operating a mixed environment with both Active Directory and Unix domain name system (DNS). Another problem area it pointed to was poor management functions.
The GigaFlash report urged users to get the necessary AD training for applicable IT staff; employ the appropriate third-party domain migration and AD management tools. When necessary, it also recommended users engage the services of Microsoft Consulting or other experienced third-party outsourcers or systems integrators to assist in Active Directory migration project.
Worryingly Giga analyst Laura DiDio does not believe Microsoft is planning any short-term remedy. "The present functional limitations of Active Directory will persist for at least the next six months until Microsoft ships the next-generation Windows .net Server."
She said the new server OS will include Active Directory 1.1, which will alleviate "some but not all of these problems." While the upcoming version will include more features and flexibility, DiDio said certain advanced features, such as support for multi-forests, would not be available.
Users face the prospect of a two-year wait until Microsoft releases the new version of Active Directory, code-named "Blackcomb." Alternatively, she said users could choose to deploy another directory services platform like Novell's eDirectory or Netscape's iPlanet - or hope that Microsoft can provide some level of customisation.