Microsoft Exchange and Active Directory Blog
In the third part of the article series "Simple measures for more security in AD", I dealt with LAPS for servers and clients. Admittedly: The LAPS article was written some time ago, but the topic has not been forgotten. That's why there is now a new article on "Simple measures for more security in AD". In this fourth part ... Read more
This third part of the article series "Simple measures for more security in AD" deals with the passwords of local administrator accounts. In many environments, the local administrator passwords are always the same, but this sometimes opens the door to malware and makes lateral movement possible or at least simplifies it. Different passwords for the ... Read more
I have already described the basic functionality of Admin Tiers in Part 1 of this article series; this article will now focus on setting up Admin Tiers in an existing environment. Basically, it makes sense if at least one Admin Host has already been installed. By and large, this article is first of all about ... Read more
Part 1 of this article series has already presented measures to improve the security of the Active Directory. The next articles are now dedicated to the implementation of these measures within an existing Active Directory using an example environment. This article will first deal with the Admin Host. Introduction The fictitious company "FrankysWebLab" can be used as an example here. Read more
To increase security within the Active Directory, small organizational measures in conjunction with free tools are usually sufficient. Many widespread attack vectors can at least be significantly curbed with a few small changes and fairly simple measures. The word "attacker" often appears in the following article, but "attacker" does not necessarily mean a ... Read more
