5 AD Security Settings Most Admins Have Not Heard Of, But Attackers Leverage!
Date: Tuesday, September 22 at 11am PDT / 2pm EDT
Everyone knows Active Directory! It is a seasoned and known IAM, not to mention that nearly every organization in the world uses it. This being said, there are also many built-in configurations and processes that “just work” without the need for any manual configurations, that many administrators are not aware they are there. Unfortunately, the attacker does and leverages misconfigurations to move laterally and gain privileges.
In this webinar, 16X MVP Derek Melber will guide you through the most common settings that attackers know about, but most AD administrators don’t. You will have a full list of items to verify and fix when you are done with this webinar!
In the webinar you will learn:
- How an attacker can leverage the SDProp process
- Which service account configurations attackers look for
- How an old Unix attribute can cause an immediate privilege elevation
- How a migration related attribute can allow domain admin privileges
- What details you need to verify for your trusts
About the presenter:
Derek Melber, Technical Director – North America, Alsid
Derek is a 15 time MVP, in both Active Directory and Group Policy. As a prolific speaker and educator, Derek goes to over 20 countries every year, helping organizations and administrators better understand Active Directory, Group Policy, security, and their overall network infrastructure.