Active Directory Security
Categories
- Active Directory Backup & Recovery (61)
- Active Directory Security (202)
- AD Security 101 (17)
- Community Tools (19)
- Directory Modernization (9)
- From the Front Lines (69)
- Hybrid Identity Protection (63)
- Identity Attack Catalog (18)
- Identity Threat Detection & Response (134)
- Our Mission: Be a Force for Good (14)
- Purple Knight (5)
- The CISO's Perspective (16)
- Threat Research (61)
- Uncategorized (1)
Why On-Premises Active Directory Still Matters in a Cloud-Connected World
- Sean Deuby | Principal Technologist
With all the talk about stampeding to the cloud, I get asked fairly regularly if I think Active Directory will be going away. No, AD isn't becoming obsolete; it's evolving. And as it evolves, I'd argue that it matters more than ever. Within Microsoft ISSD (Identity and Security Services Division),…
Vulnerability in Kerberos Allows Elevation of Privilege
- Sharon Vardi
Recently, Microsoft has released a security update (MS14-068) for Windows Server. The patched vulnerability is in the Windows Kerberos Key Distribution Center (KDC), which generates the session tickets to identities within Active Directory while accessing the Domain's resources. When clients request access to a resource, they contact the ticket-granting service…
