New & Notable
Active Directory security News
July 20, 2018
Microsoft introduced its new Identity Bounty Program that offers up to $100,000 in rewards for reported vulnerabilities in its identity services, such as Azure Active Directory.
December 15, 2015
A new blog post detailed authentication vulnerabilities in Microsoft Kerberos that cannot be patched and could lead to attackers having free rein over systems.
May 05, 2015
Microsoft has released its Local Administrator Password Solution for a common admin login account across all domain-joined computers in hopes that it will decrease pass-the-hash attacks.
July 15, 2014
Despite what may be a dangerous new Active Directory "pass the hash" attack variant, Microsoft has downplayed the issue as a technical limitation.
Active Directory security Get Started
Bring yourself up to speed with our introductory content
A Windows Server 2016 feature called a bastion forest is the centerpiece of Microsoft's privileged access management model that limits the exposure of admin rights. Continue Reading
Claims-based identity is a means of authenticating an end user, application or device to another system in a way that abstracts the entity's specific information while providing data that authorizes it for appropriate and relevant interactions. Continue Reading
Auditing Active Directory can be made easier with tools like the open source BloodHound tool. Expert Joe Granneman looks at the different functions of the tool and how it can help. Continue Reading
Evaluate Active Directory security Vendors & Products
Weigh the pros and cons of technologies, products and projects you are considering.
DDoS amplification attacks that use the CLDAP protocol are a new threat to enterprises. Expert Matthew Pascucci explains how they work and how enterprises can protect themselves. Continue Reading
This Security School examines how security professionals should consider updating and adapting their IAM framework to work with emerging technologies. Continue Reading
Your IAM infrastructure should cut through the 'access excess' that is plaguing most companies. Learn how to overcome the challenges posed by migration to cloud and mobility. Continue Reading
Manage Active Directory security
Learn to apply best practices and optimize your operations.
Active Directory OUs maintain order in an IT organization. But if you're not careful, an errant keystroke can topple everything. Continue Reading
Authentication vulnerabilities are a constant problem, but testing tools like hashcat can make a significant difference. Expert Joe Granneman discusses hashcat and password cracking. Continue Reading
Many Hadoop variants offer fully integrated Kerberos, with facilities to improve setup and link to your existing identity repository. Continue Reading
Problem Solve Active Directory security Issues
We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.
QakBot malware triggered hundreds of thousands of Microsoft Active Directory account lockouts. Discover the malware's target and how these attacks are being carried out. Continue Reading
The WannaCry TCP port 445 exploit returned the spotlight to Microsoft's long-abused networking port. Network security expert Kevin Beaver explains how to detect and defend such attacks. Continue Reading
How Aorato's Directory Services Application Firewall protects Active Directory, and why it's useful for enterprises. Continue Reading