Skip to content
IAM glossary

Tiered Administration Model

Also known as: Tier 0/1/2

Active Directory

The tiered model divides the environment by value: Tier 0 (domain controllers and identity systems), Tier 1 (servers and apps), and Tier 2 (workstations). The core rule is that credentials from a higher tier are never exposed on a lower tier.

Why it matters

It directly defeats the most common path to total compromise: stealing admin credentials cached on a phished workstation. Tiering ensures a workstation breach can't reach the domain controllers.

Related terms

Active DirectoryPrivileged Identity ManagementZero Trust
Back to glossary

Ready to secure your identity foundation?

Book a free 30-minute discovery call. We'll talk through your environment and where the biggest wins are — no obligation.

Schedule a ConsultationExplore Services
Book a Call