Active Directory Real Defense for Domain Admins
Offered By: YouTube
Course Description
Overview
Explore advanced techniques for securing Active Directory environments in this 49-minute conference talk from DerbyCon 4. Learn how to effectively manage Domain Admin accounts, implement strict password policies, and set logon restrictions to enhance overall security. Discover the importance of separating privileged accounts from everyday use, disabling cached credentials, and properly handling service accounts. Gain insights into using Microsoft Security Compliance Manager and understanding the risks associated with null sessions. Emphasize the value of offensive security training to better defend against potential threats. Conclude with a Q&A session to address specific concerns and deepen your understanding of Active Directory defense strategies.
Syllabus
Disclaimer
Test your new DAs
Limit the number of DAS
Separate DA accounts from "everyday" accounts
Separate DA password policy
Set DA logon restrictions DCs only!
Disable Cached Creds
Be careful with DA service accounts
Microsoft Security Compliance Manager
A quick word about null sessions
Get offensive security training!
Questions?
Related Courses
Introduction to CybersecuritySecurityScoreCard via Udacity IBM Cybersecurity Fundamentals
IBM via edX Preparing to Manage Security and Privacy Risk with NIST's Risk Management Framework
Pluralsight Configuring Microsoft Azure Active Directory Privileged Identity Management
Pluralsight Office 365: Plan for Exchange Online and Skype for Business Online (Office 365/Microsoft 365)
LinkedIn Learning