YoVDO

Active Directory - Real Defense for Domain Admins

Offered By: YouTube

Tags

Conference Talks Courses Cybersecurity Courses System Administration Courses Security Compliance Courses Active Directory Security Courses

Course Description

Overview

Learn effective strategies to protect Domain Admins and Domain Controllers in Active Directory environments through this conference talk. Explore immediately applicable techniques including testing Domain Admins, limiting their number, implementing separate accounts and password policies, setting logon restrictions, disabling cached credentials, and managing service accounts. Gain insights into using Microsoft Security Compliance Manager, understanding null sessions, and the importance of offensive security training to enhance your organization's defense against potential threats.

Syllabus

Intro
Active Directory: Real Defense for Domain Admins
Disclaimer
Provide immediately useful content for the defense of your Domain Admins (DAS) and Domain Controllers (DCs)
Test your Domain Admins
Limit the number of DAs
EPIC FAIL
Separate DA accounts from "everyday" accounts
Separate DA password policy
Set DA logon restrictions DCs only!
Disable Cached Creds
Be careful with DA service accounts
Microsoft Security Compliance Manager
A quick word about null sessions
Get offensive security training!
Questions?


Related Courses

Active Directory Security Beyond the Easy Button
YouTube
Securing Active Directory PAM for ADDS
YouTube
Abusing Microsoft Kerberos - Sorry You Guys Don't Get It
Black Hat via YouTube
Active Directory Attacks Series
YouTube
Active Directory Real Defense for Domain Admins
YouTube