Έλεγχος ασφάλειας στο Active Directory
View/ Open
Keywords
Active Directory ; Security audit ; Security audit automation ; PowershellAbstract
Microsoft Active Directory is a directory service developed by Microsoft for use in networks with Windows systems. Its use is widespread and found in the infrastructures of small and large companies as well as organizations around the world. This widespread use has led to it being the target of attacks from both external and internal actors. This is because the systems participating in Active Directory often contain high-value information such as research results, product designs, trade secrets and others, also its partial or total destruction seriously damages the respective organization. Therefore, due to the importance of the information contained, the need for the availability of the Active Directory infrastructure and its frequent targeting, the organizations that use it must take care of its security and keep it in the safest possible state that the circumstances allow . However, an Active Directory environment can be large, usually proportional to the size of the organization, and host many different services, making its protection quite a complex problem, especially considering the frequent changes that may be made to it. This paper lists the best practices for securing Active Directory according to Microsoft and finally produces a tool that automates the check for their practical application.