Active Directory

6 Tips to Harden Your Windows LAPS Deployment

In a previous blog post, we covered how to migrate to Windows Local Administrator Password Solution (LAPS). With Windows LAPS deployments gaining traction, it’s important to review configuration items and implement policies that can harden your endpoints and mitigate attacks from bad actors. Secret encryption, secret history, access control list (ACL) monitoring, and more play […]

6 Tips to Harden Your Windows LAPS Deployment Read More »

Review Your Privileged Users & Groups

[WEBINAR] [WEBINAR] https://www.youtube.com/watch?v=6Ntn7Y6RIuo Looking to secure your Active Directory (AD)? The best place to start is by reviewing your privileged users and groups.    In this video, AD expert Brian Desmond advises on:  How many people you should have in privileged groups  If you should include service accounts in privileged groups  What an AdminSDHolder is

Review Your Privileged Users & Groups Read More »

Virtual Machine Generation ID with Active Directory Domain Controllers

Active Directory (AD) domain controllers (DCs) have been around since Windows 2000. At that time, virtualization was in its infancy and almost every server was physical. And many of those servers weren’t even housed in a typical datacenter or server closet. Virtualization started to take off in the early to mid-2000s. It enabled the use

Virtual Machine Generation ID with Active Directory Domain Controllers Read More »

Deploying the eduPerson Schema to Active Directory

If you work in a higher education environment, there exists a set of standards that must be implemented to allow students and faculty to collaborate on projects at other schools or to use higher education specific services. One of these standards is the eduPerson schema, which provides storage for widely used education-specific attributes about a

Deploying the eduPerson Schema to Active Directory Read More »

Securing Active Directory (AD) Through a Migration

[WEBINAR] Securing Active Directory (AD) Through a Migration Although Active Directory (AD) is widely used by organizations, it can pose significant security risks when there are inadequate security controls. Many organizations have multiple AD domains due to mergers, acquisitions, and decentralized IT. AD sprawl can multiply security risks and make it difficult to standardize security

Securing Active Directory (AD) Through a Migration Read More »

The State of Security with Brian Desmond

[PODCAST] The State of Security with Brian Desmond What are in-the-trenches pros observing when it comes to Active Directory and identity security in 2023?  Brian Desmond from Ravenswood Technology Group returns to the HIP Podcast to provide updates on current challenges and trends, including Active Directory hardening, PKI, and Tier 0 infrastructure protection. LISTEN NOW

The State of Security with Brian Desmond Read More »

3 Components of Cloud Authentication: Enterprise SSO, Zero Trust, Passwordless

In the past few years, we’ve seen a rapid expansion in remote and remote-hybrid workforces. Remote employees primarily use cloud-native services to manage their daily workloads from the comfort of their home (or public) internet. This has caused a great deal of stress for IT departments, especially those that rely heavily on their internal infrastructure.  

3 Components of Cloud Authentication: Enterprise SSO, Zero Trust, Passwordless Read More »

Network Time Protocol Configurations: A Deeper Dive

In my previous blog post we reviewed why time synchronization is important, as well as proper time synchronization configuration of domain controllers (DCs) holding the Primary Domain Controller Emulator (PDCe) role. We were able to properly configure Network Time Protocol (NTP) settings through the use of Windows Management Instrumentation (WMI) filters and Group Policy. Like

Network Time Protocol Configurations: A Deeper Dive Read More »