Active Directory Archives

Hiding Confidential Information in Active Directory, Part 1

Leave a Comment / Uncategorized / Brian Britt

Active Directory (AD) is widely adopted by many companies as the central identity and access management platform. It provides authentication and authorization services and includes many security features that can enforce access controls to applications and other services within the enterprise. However, sometimes the data you store within AD to support applications is sensitive and […]

Hiding Confidential Information in Active Directory, Part 1 Read More »

6 Tips to Harden Your Windows LAPS Deployment

Leave a Comment / Active Directory, Blog, Security / Thomas Garrity

In a previous blog post, we covered how to migrate to Windows Local Administrator Password Solution (LAPS). With Windows LAPS deployments gaining traction, it’s important to review configuration items and implement policies that can harden your endpoints and mitigate attacks from bad actors. Secret encryption, secret history, access control list (ACL) monitoring, and more play

6 Tips to Harden Your Windows LAPS Deployment Read More »

Migrating to Windows LAPS

Leave a Comment / Active Directory, Blog, Security / Thomas Garrity

Windows Local Administrator Password Solution (LAPS), now integrated into the OS, is the replacement for Microsoft LAPS, which was a separate installation. Windows LAPS is a native, built-in solution with increased functionality and security features. It also provides an emulation mode to help you migrate from legacy LAPS. Now is the time to migrate to

Migrating to Windows LAPS Read More »

Review Your Privileged Users & Groups

Virtual Machine Generation ID with Active Directory Domain Controllers

Leave a Comment / Active Directory, Blog, Identity / Josh Goben

Active Directory (AD) domain controllers (DCs) have been around since Windows 2000. At that time, virtualization was in its infancy and almost every server was physical. And many of those servers weren’t even housed in a typical datacenter or server closet. Virtualization started to take off in the early to mid-2000s. It enabled the use

Virtual Machine Generation ID with Active Directory Domain Controllers Read More »

Deploying the eduPerson Schema to Active Directory

Leave a Comment / Active Directory, Blog, Identity Management / James Babb

If you work in a higher education environment, there exists a set of standards that must be implemented to allow students and faculty to collaborate on projects at other schools or to use higher education specific services. One of these standards is the eduPerson schema, which provides storage for widely used education-specific attributes about a

Deploying the eduPerson Schema to Active Directory Read More »

AD Recovery is Hard: What Should Your Plan Include?

Leave a Comment / Article / Burke Matsuo

[ARTICLE] AD Forest Recovery is tough. There’s a non-trivial number of pitfalls that can occur during a recovery that you won’t want to encounter when recovering from an actual disaster. It’s essential to have a solid recovery plan that is updated on a regular basis, after every major environmental change, and tested at least once

AD Recovery is Hard: What Should Your Plan Include? Read More »

The State of Security with Brian Desmond

Leave a Comment / Podcast / Brian Desmond

[PODCAST] The State of Security with Brian Desmond What are in-the-trenches pros observing when it comes to Active Directory and identity security in 2023? Brian Desmond from Ravenswood Technology Group returns to the HIP Podcast to provide updates on current challenges and trends, including Active Directory hardening, PKI, and Tier 0 infrastructure protection. LISTEN NOW

The State of Security with Brian Desmond Read More »

Securing Active Directory (AD) Through a Migration

Leave a Comment / Webinar / Brian Desmond

[WEBINAR] Securing Active Directory (AD) Through a Migration Although Active Directory (AD) is widely used by organizations, it can pose significant security risks when there are inadequate security controls. Many organizations have multiple AD domains due to mergers, acquisitions, and decentralized IT. AD sprawl can multiply security risks and make it difficult to standardize security

Securing Active Directory (AD) Through a Migration Read More »

3 Components of Cloud Authentication: Enterprise SSO, Zero Trust, Passwordless

Leave a Comment / Blog, Identity Management / Miles Gratz

In the past few years, we’ve seen a rapid expansion in remote and remote-hybrid workforces. Remote employees primarily use cloud-native services to manage their daily workloads from the comfort of their home (or public) internet. This has caused a great deal of stress for IT departments, especially those that rely heavily on their internal infrastructure.

3 Components of Cloud Authentication: Enterprise SSO, Zero Trust, Passwordless Read More »

Active Directory