Security News > 2021 > July > How to improve your organization’s Active Directory security posture
Active Directory, a directory service developed by Microsoft for Windows domain networks, is most organizations' primary store for employee authentication and identity management, and controls which assets / applications / systems a user has access to.
This makes Active Directory a valuable target for attackers and spur organizations to improve its security.
"Active Directory is considered commodity technology these days - after all, this technology should have matured after more than 20 years of being in use. And from an infrastructure resilience and stability point of view, this statement is correct. But, sadly, not from a security point of view, where various weaknesses of AD are being used increasingly by cyber-criminals to attack companies," he told Help Net Security.
In the latter scenario, enterprise security relies even more on a sound and well-operated Active Directory service, because the risk encompasses malicious access to both the company's on-prem applications and the cloud applications.
Tips to improve your Active Directory security posture.
Grillenmeier advises companies to perform at least periodic scans of their Active Directory setup with these and similar tools, and then work on remediating the discovered security issues before an intruder finds and exploits them first.