CSOonline

Improving domain password security in Active Directory

“[LAPS] mitigates the risk of lateral escalation that results when customers use the same administrative local account and password combination on their computers. LAPS stores the password for each ...
Threat Post

Two Active Directory Bugs Lead to Easy Windows Domain Takeover

Microsoft is urging customers to patch two Active Directory domain controller bugs after a PoC tool was publicly released on Dec. 12. A proof-of-concept tool has been published that leverages two ...
MCPmag

Exploring the Active Directory Forest and Domain

Back in the day, we would be using ADSI to connect to our Active Directory forest/domain to gather information about a variety of things. Today I will completely ignore ADSI and focus solely on the ...
Network World

Tame Active Directory groups to streamline management, prep for automation

On the surface, Active Directory groups are a simple and straightforward way to manage identities (users and/or computers) and assign permissions. Users or computers are added as group members, and ...
MCPmag

How Attackers Use BloodHound To Get Active Directory Domain Admin Access

Hackers can use tools like BloodHound to visualize the shortest path to owning your domain. But that doesn't mean you can't use it to find and protect your organization's weak spots. Here's how.
Computerworld

Active Directory mistake: Moving domain controller objects into a child OU of the domain controller is unsupported

In two previous articles (here and here) I shared some classic Active Directory mistakes people have made that got their companies into serious trouble. Here’s another mistake that on the face of it ...