Active Directory security

In this directory security resource, experts provide insights and best practices around Active Directory security and LDAP, and also offer tips on how to install AD and LDAP, setup, configuration, tools, users and monitoring.

September 27, 2018 27 Sep'18
Microsoft wants to eliminate passwords -- and there's an app for that

At its Ignite 2018 conference, Microsoft declared an end to the password era and extended support for its Microsoft Authenticator app to Azure AD-connected apps.
July 20, 2018 20 Jul'18
Microsoft launches Identity Bounty Program, offers up to $100,000

Microsoft introduced its new Identity Bounty Program that offers up to $100,000 in rewards for reported vulnerabilities in its identity services, such as Azure Active Directory.
December 15, 2015 15 Dec'15
Old Microsoft Kerberos vulnerability gets new spotlight

A new blog post detailed authentication vulnerabilities in Microsoft Kerberos that cannot be patched and could lead to attackers having free rein over systems.
May 05, 2015 05 May'15
Local Administrator Password Solution aims to stop credential replay

Microsoft has released its Local Administrator Password Solution for a common admin login account across all domain-joined computers in hopes that it will decrease pass-the-hash attacks.

Bring yourself up to speed with our introductory content

Can this Active Directory quiz stump you?

How much do you know about Active Directory? Find out with this Active Directory quiz on the service's basics, structure and capabilities. Continue Reading
How to deploy a Windows Server 2016 domain controller

Follow these tips to create a domain controller in Windows Server 2016 with these instructions, from server setup to adding users. Continue Reading
Understand Active Directory basics for enterprise success

You can't get the most out of a tool unless you understand its features. This tip explains the basics of Active Directory and how it controls access and maintains order. Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

How does the CLDAP protocol DDoS amplification attack work?

DDoS amplification attacks that use the CLDAP protocol are a new threat to enterprises. Expert Matthew Pascucci explains how they work and how enterprises can protect themselves. Continue Reading
Making updates to your IAM framework

This Security School examines how security professionals should consider updating and adapting their IAM framework to work with emerging technologies. Continue Reading
Expanding the IAM infrastructure to meet emerging challenges

Your IAM infrastructure should cut through the 'access excess' that is plaguing most companies. Learn how to overcome the challenges posed by migration to cloud and mobility. Continue Reading

Learn to apply best practices and optimize your operations.

PowerShell commands for Active Directory: Groups management

Managing users, devices and other resources with Active Directory doesn't always require a GUI tool. Try PowerShell to streamline some of your administrative workload. Continue Reading
How the BloodHound tool can improve Active Directory security

Auditing Active Directory can be made easier with tools like the open source BloodHound tool. Expert Joe Granneman looks at the different functions of the tool and how it can help. Continue Reading
Preserve your AD organizational unit with these commands

Active Directory OUs maintain order in an IT organization. But if you're not careful, an errant keystroke can topple everything. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

QakBot malware: How did it trigger Microsoft AD lockouts?

QakBot malware triggered hundreds of thousands of Microsoft Active Directory account lockouts. Discover the malware's target and how these attacks are being carried out. Continue Reading
How to detect and defend against a TCP port 445 exploit

The WannaCry TCP port 445 exploit returned the spotlight to Microsoft's long-abused networking port. Network security expert Kevin Beaver explains how to detect and defend such attacks. Continue Reading
Understanding Aorato's Directory Services Application Firewall

How Aorato's Directory Services Application Firewall protects Active Directory, and why it's useful for enterprises. Continue Reading