Home > Storage > PowerScale (Isilon) > Product Documentation > Storage (general) > PowerScale OneFS Best Practices > Permissions, authentication, and access control recommendations
Access Zones provide secure, isolated storage pools for specific departments within an organization, allowing consolidation of storage resources without compromising security.
A minimum of two AD, LDAP or NIS servers provides redundancy and helps avoid access control lookups being a bottleneck. For larger environments, scaling the number of domain servers may be required.
The best practices for Access Zones include:
For more information about identity management, authentication, and access control in combined NFS and SMB environments, see the OneFS Multiprotocol Security Guide.