Trimarc Security Assessment: Securing Active Directory

This is a great presentation that talks about:

• Active Directory security assessment
• Identifying AD Security Issues: 8:44 
• AD Duplicate SPNs: 17:54 
• AD Admin Account Checks: 20:26 
• Protected Users: 22:48 
• Kerberos Delegation Recommendations: 38:00 
• Tools for Reviewing AD: 50:35 
• Invoke-TrimarcADChecks: 51:18 
• Q&A: 53:25

AD security reviews:

•  User account issues
• Domain Password policy
• Tombstone Lifetime & Backups
• Trusts
• Duplicate SPNs
• Group Policy Preference Passwords
• AD Administration & Privileged Accounts
• KRGTGT
• Kerberos Delegation
• Domain & GPO Permissions
• Domain Controller Security
  

 Links:

• https://www.hub.trimarcsecurity.com//post/webcast-securing-active-directory-performing-your-own-ad-security-review