AD isn't just a directory. It's basically a central database that's connected to lots of useful corporate IT management tools that come out of the box with Windows:
1. Remote management of company IT assets including individual users' computers.
2. Single source of truth for single sign-on.
3. Access control and remote configuration for network servers/resources.
If you dig further, there's even more stuff that connects into AD. For example, you can use it to set up and deploy internal certificate authorities for intranet apps.
If you're using Azure AD, you can extend single sign-on into non-Microsoft web apps. It includes an implementation of zero-trust networking.
The fact that it comes out of the box and is widely used is crucial, it means that as an IT professional you have less hassle with purchasing/configuring/deploying management software, and when you move between companies you already know the tools.
I think it's a good thing that governments are considering switching to Linux, but AD/AAD is a legitimately sticky product for IT management.
1. Remote management of company IT assets including individual users' computers.
2. Single source of truth for single sign-on.
3. Access control and remote configuration for network servers/resources.
If you dig further, there's even more stuff that connects into AD. For example, you can use it to set up and deploy internal certificate authorities for intranet apps.
If you're using Azure AD, you can extend single sign-on into non-Microsoft web apps. It includes an implementation of zero-trust networking.
The fact that it comes out of the box and is widely used is crucial, it means that as an IT professional you have less hassle with purchasing/configuring/deploying management software, and when you move between companies you already know the tools.
I think it's a good thing that governments are considering switching to Linux, but AD/AAD is a legitimately sticky product for IT management.