Active Directory Security Assessment

Active directory security assessment adsa in depth review of active directory configuration and gpo settings that drive security for in scope domains and their affiliated ous groups computers users and service accounts.

Active directory security assessment.

The active directory assessment provides you with an assessment of your active directory environment with domain controllers running on premises on azure vms or on amazon web services aws vms. Trimarc performs an active directory security assessment adsa at the customer s site or remotely as appropriate in order to assess known security configuration issues. Thinking an active directory domain is the security boundary. This impacts the design of security controls and may introduce vulnerabilities.

Active directory security assessment. In any microsoft windows ecosystem active directory is critical for identity management authentication authorization security and operations in part because the configuration of ad settings affects multiple information systems through group policy. An active directory forest may be designed with multiple domains to mitigate certain security concerns but won t actually mitigate them due to how domain trusts in the forest work. The active directory security assessment adsa is based on our extensive incident response experience global containment and remediation services and emerging threat intelligence.

Mandiant uses our expertise to help your organization improve the key processes configuration standards security and monitoring controls required to effectively. This solution also provides you with status on your progress relative to microsoft s recommended roadmap for securing privilege access spa of which active directory is a. The adsa involves document review discussions with staff running scripts and tools and or manual review of the active directory. The data is collected remotely allowing you to maintain the utmost privacy and run the assessment on your own schedule.

The adsr is a lighter version of our active directory security assessment for smaller single domain forests and is focused on the most common ad security issues. The active directory security assessment is designed to provide you specific actionable guidance to mitigate security risks to your active directory and your organization. Submission of data through the cloud and viewing results on our online portal uses encryption to help protect your data. These assessments use microsoft azure log analytics which is designed to give you simplified it and security management across your environment.

Active directory plays a critical role in today s enterprise it environments.