Active Directory Archives

Practical Protection: Limiting the Damage from Local Admin Accounts

Post author:By Paul Robichaux

Because of the way the Windows security model works, it’s not currently possible to eliminate the use of passwords for local administrator accounts. Given that fact, the next best solution is to remediate the biggest problems with passwords for these local accounts, including weakness, reuse, and tenure. In this article, we discuss how the Local Administrator Password Solution (LAPS) helps with all of those!

Azure Active Directory

May 3, 2023

InfoSec tips from TEC Europe, Copilot in Viva, SharePoint Adds Ads? – plus new Intune and Teams features: Practical 365 Podcast S3 E26

Post author:By Steve Goodman

On this weeks' show, Steve and Paul review the TEC European Roadshow, new Microsoft Teams features, new Intune security features, in-product ads in SharePoint Online, and more!

Blog

April 28, 2023

One comment

Why Active Directory Remains The Achilles Heel For Many

Post author:By Michael Van Horenbeeck

Active Directory has been around for almost 25 years. As such, one might expect that – by now – we would have figured out to keep it safe against attacks. Yet, it remains a weak point in many organizations' cybersecurity defenses. When coupled with the challenges mentioned above, this can be a recipe for disaster. Why is this the case?

Active Directory

April 25, 2023

How Quickly do Threats leak from a Compromised AD into the Cloud?

Post author:By Thijs Lecomte

As organizations move to the cloud, on-premises environments (and their security) are put in the background as the focus shifts to the cloud. Nevertheless, most organizations I know are in a hybrid scenario where the on-premises environment holds the master data and synchronizes everything into Azure Active Directory. This blog explores how an on-premises environment is connected to the cloud and how an attacker might move from on-premises to the cloud laterally.

Active Directory

March 13, 2023

How to Add Active Directory Logs to Microsoft Sentinel

Post author:By Thijs Lecomte

When setting up your SIEM, ingesting logs from Active Directory is essential. This blog dives into the two options for ingesting AD logs and compare their strengths and weaknesses.

Azure Active Directory

January 4, 2023

Group Policy as an Attack Pathway

Post author:By Darryl G. Baker

Learn some of the main group policy attack pathways, why they are easily exploited, and how to mitigate them in this article by Darryl Baker.

Active Directory

November 14, 2022

Five ways to Keep Active Directory Secure

Post author:By Andy Schneider

Although we live and work in a cloud-first world, on-premises Active Directory (AD) remains a vital component of many companies' IT infrastructure. This article goes over five ways to keep Active Directory secure.

Active Directory

November 7, 2022

3 Comments

Heard at TEC: Secure that Active Directory (AD) Migration

Post author:By Richard Dean

This article is a recap of Bryan Patton's and Joe Sharmer's TEC session. This session focused on key challenges facing today’s Active Directory administrators during consolidation and divestiture projects.

Blog

October 19, 2022

Heard at TEC: Hacked and Afraid – dramatic tales from AD disaster recovery scenarios

Post author:By Peter De Tender

Figuring Out Recovery Strategies This session was an open panel conversation between Brian Hymer, Brian Desmond, and Patrick Ancipink, three acknowledged experts with a core focus on Active Directory. The key goal of the session was to discuss Active Directory (AD) issues, especially how to recover from them. Feedback came from the panel leaders and […]

Active Directory

October 11, 2022

One comment

You’ve Migrated… But What Did You Leave Behind?

Post author:By Sean McAvinue

Preparation, Preparation, and More Preparation Migrations in Microsoft 365 are a complex beast. It seems every time you feel like you have captured everything, more apps or functionalities appear. Every shiny new tool Microsoft releases is another consideration for migration teams and IT departments. Planning for migrations – tenant-to-tenant or otherwise – is a mammoth […]

Microsoft 365

September 6, 2022

5 Comments

Migrating On-Prem Active Directory Computer Accounts to Azure AD

Post author:By Mike Weaver

In the very early Windows NT Days, we had computer accounts connected to domain controllers. This provided the early building blocks of securing data and computers in company networks. Since then, our entire digital landscape has transformed. With modern networking and cloud adoption across so much of our world, it makes sense for our computer accounts to make the move from on-prem Active Directory (AD) to Azure Active Directory (AAD).