Play all

Intro

Active Directory: Real Defense for Domain Admins

Disclaimer

Provide immediately useful content for the defense of your Domain Admins (DAS) and Domain Controllers (DCs)

Test your Domain Admins

Limit the number of DAs

EPIC FAIL

Separate DA accounts from "everyday" accounts

Separate DA password policy

Set DA logon restrictions DCs only!

Disable Cached Creds

Be careful with DA service accounts

Microsoft Security Compliance Manager

A quick word about null sessions

Get offensive security training!

Questions?

Description:

Learn effective strategies to protect Domain Admins and Domain Controllers in Active Directory environments through this conference talk. Explore immediately applicable techniques including testing Domain Admins, limiting their number, implementing separate accounts and password policies, setting logon restrictions, disabling cached credentials, and managing service accounts. Gain insights into using Microsoft Security Compliance Manager, understanding null sessions, and the importance of offensive security training to enhance your organization's defense against potential threats.

Active Directory - Real Defense for Domain Admins

Add to list

#Conference Talks #Information Security (InfoSec) #Cybersecurity #Computer Science #System Administration #Security Compliance #Information Technology #Windows Systems Administration #Windows Server #Active Directory #Active Directory Security

0:00 / 0:00