In LUA, we have to manually enter users and passwords, without any link to AD. Easy to forget, not convenient.
It would be so much easier if we could just Add an AD group in the user management list, and then at login, we indicated domain\user and AD password. So when we hire new staff, we just add them to the correct AD groups.
We should also be able to add AD users, but the most interesting is AD groups. Same for SEPM.
Single Sign On is a must nowadays.