What you'll learn:
- Securing domain controllers
- Security risks that can affect domain controllers
- Modifying the security settings of domain controllers
- What are RODCs?
- Deploying an RODC
- Configuring a password replication policy
- Implementing account security
- Password policies
- Account lockout policies
- Configuring a fine-grained password policy
- Tools for creating PSOs
- Implementing audit authentication
- Account logon and logon events
- Configuring managed service accounts
This course is aimed to IT Pros and is supposed to give the viewer the information they need to know to get started with Active Directory (AD DS) and its key concepts. The goal is to provide coverage of ADDScomponents of advanced AD DS deployments, how to deploy a distributed AD DS environment and· Configure AD DS Security.
The course is targeted to help learning Active Directory and do your job more efficiently.
After completing this course, you will be able to:
· Describe how to Secure domain controllers
· Implementing account security.
· Implementing audit authentication
· Configuring managed service accounts
In your organization’s information technology (IT) infrastructure, securing Active Directory Domain Services (AD DS) domain controllers is a critical task. Domain controllers provide access to many different resources, and they contain information about users and their passwords. If a single domain controller is compromised, any objects in the same Active Directory domain or in any trusted domain are at risk of being compromised, too.
The Windows Server 2016 operating system provides features and apps that you can use to help secure your network against security threats. The operating system provides measures to secure domain controllers by minimizing their attack surface and determining their domain-controller placements. The operating system also determines the AD DS roles that are used for administration and design, and implements password security, in addition to auditing when attacks occur. You also can use domain controllers to deploy security measures to other clients and servers in your Windows-based infrastructure.
AD DS administrators must understand the threats to domain controllers and the methods that they can use to secure AD DS and its domain controllers.
Objectives
After completing this module, you will be able to:
· Secure domain controllers.
· Implement account security.
· Implement audit authentication.
· Configure managed service accounts (MSAs).