IPSec experience in internal networks

From: Marlon Brown (marlon_brown_at_hotmail.com)
Date: 11/08/04

Date: Mon, 8 Nov 2004 11:35:17 -0800

I have been reading documentation on enabling IPSec on AD environment via
group policies (client-to-client, server-to-client, server-to-server).

In general, for a 3,500+ PCs environment, with 120 Win2000/Win2003 servers,
what would be the maintenance involved when enabling IPSec ?
Do you think that encrypting data internally with IPSec is that something
organizations are really doing successfully these days ?