Course description
Securing and Auditing Windows Active Directory Domains
This course focuses on developing an audit program, how to obtain Active Directory data using PowerShell scripts, items to look for in the output, ways to protect against attacks, and storing samples of the output as evidence of security protocols.
Do you work at this company and want to update this page?
Is there out-of-date information about your company or courses published here? Fill out this form to get in touch with us.
Upcoming start dates
Who should attend?
System and Security Administrators; Information Security Managers and Analysts; Network Administrators; Security Architects; Information Technology Auditors and Consultants
Prerequisites
A working knowledge of Windows, Excel and VMware Workstation is helpful, but not mandatory.
Training content
Windows and Windows Networks:
- Windows Operating Systems and Versions.
- Windows Patches
- Windows Server Builds
- vLANs
- Siloing
- Auditing Active Directory Core Components:
- Domains, Trees and Forests
- Active Directory Structure
- Active Directory Sites and Services
- Domain Controllers
- DNS
- Time Configuration
- Active Directory Domains and Trusts
- Active Directory Federation Services
- Active Directory Certification Authority
- Auditing Active Directory Users:
- User Accounts
- Windows Services
- Active Directory Administrative Center
- Active Directory Recycle Bin
- Authentication Policies
- Authentication Policy Silos
- Auditing Active Directory Groups:
- Group Types
- Access Control Lists
- Auditing Domain Groups
- Authentication and Auditing Protecting Policies
- Security Identifiers (SIDs)
- Kerberos
- Password Attack Techniques
- Protecting Passwords
- Password Policies
- Fine Grained Password Policies
- Active Directory Folder Rights:
- Share Permissions
- NTFS Permissions
- Inheritance
- Folder structure and permissions
- Drive mappings
- Best Practices
- Identify sensitive folders
- Active Directory Delegation:
- Reasons to Delegate the Administration of Active Directory
- Active Directory Administration Delegation
- Audit Active Directory Delegation
- Kerberos Unconstrained Delegation
- Security Compliance Manager and Group Policy:
- Microsoft Security Assessment Tool 4.0
- Retina Network Vulnerability Community Scanner
- Microsoft Security Compliance Toolkit 1.0
- Group Policy
- Auditing User Rights and Event Viewer:
- Auditing User Rights
- Event Viewer
- Hardening Active Directory:
- Password Policies
- Patch Management
- Upgrade Domain Controllers to Windows Server 2016/2019
- Multifactor authentication
- Authentication Policy Silos
- Silo your Network
- Audit Administration Account Use
- Limit Membership of Schema Admins and Enterprise Admins Groups.
- Use Separate Administrative Accounts
- Continuous Monitoring
- End User Training
- Active Directory Case Study
Course delivery details
Bring this course to your organization at your convenience. ACI Learning can deliver this instructor-led course for your team at a chosen location or virtually. Alternatively, choose the topic(s) you need and ACI will craft a training solution to keep your team future-proof.
Certification / Credits
NASBA Certified CPE: 32 Credits Auditing
IT Audit Certificate, Information Security Certificate
What You'll Learn
You will learn how to effectively audit Active Directory using VMware workstations and Windows Domain Controllers and Workstations.
Objectives
- Windows and Windows Networks
- Active Directory Basics
- Users and Groups
- Active Directory Password Policies
- Active Directory Folder Rights
- Active Directory Delegation
- Compliance Manager and Group Policy
- User Rights and Event Viewer
- Hardening Active Directory
- Active Directory Case Study
Reviews
Average rating 5
Excellent course. The hands-on labs did a good job of cementing each lesson. The instructor used his expertise in the subject matter area to enhance our base understanding throu...
Excellent, great mix of hands-on labs and lecture with real-life examples. Also, the instructor has much knowledge & expertise, a very valuable resource!
ACI Learning
At ACI Learning, we train leaders in Cybersecurity, Audit, and Information Technology. Whether you're starting your IT career, mastering your profession, or developing your team, we're with you every step of the way. We believe that training is not a...
The facilities were very good.