Audilitics
Generic filters
Generic filters

Auditing Windows Server Active Directory Security Course

Auditing Windows Server Active Directory Security

The Auditing Windows Server Active Directory Security course will showcase and demonstrate practical steps, in assessing and reviewing the management and security of Windows Servers and Clients.

In this course, you will learn the key enterprise principles and practices in auditing a Windows Server Active Directory infrastructure, including how to identify potential security risks and misconfigurations, review Group Policy auditing settings, and analyze Windows event logs.

You will also gain practical experience in using in-built windows features, and free/open source tools to independently verify various Windows Server Active Directory settings and configurations.

Information Technology and Cybersecurity auditors, and general IT enthusiasts, will be better equipped to analyze, test, review and verify the key configurations and security of Windows Systems for compliance.

Course Content

Course Overview
Overview of Auditing Windows Server Active Directory Security
Sample Lesson
1 - Auditing Group Policy Objects (GPOs)
01a – Auditing Group Policy Objects (GPOs) using Group Policy Management
01b – Auditing Group Policy Objects (GPOs) Using Policy Analyzer
2 - Auditing AD Users, Groups and Organizational Units (OUs)
02a – Overview of AD Users, Groups and Organizational Units (OUs)
02b – Overview of LDAPSoft AD Browser with Query Examples
02c – Auditing AD Objects Using Built-in AD Features
02d – Auditing AD Objects Created Within a Custom Period
02e – Auditing AD Objects in the Administrators Group
3 - Auditing Administrative Accounts Security
03a – Overview of Active Directory Administrative Accounts
03b – Audit the ‘Account is sensitive and cannot be delegated’ AD Option
03c – Audit the ‘Access this computer from the network’ User Right
03d – Audit the ‘Allow log on through Remote Desktop Services’ User Right
03e – Audit Members of the Enterprise Admins Group
03f – Auditing Local Administrator Accounts
03g – LAB: Auditing Local Administrator Accounts Using LAPS
4 - Auditing Windows Ports, Protocols, and Services
04a – Overview of Ports, Protocols, and Services
04b – Mapping Ports to Applications and Services
04c – LAB: Auditing Open Ports and Services with Nmap
04d – Auditing Ports Using Port Query
5 -Auditing Windows Firewall Policies and Rules
05a – Overview of Windows Firewall with Advanced Security
05b – LAB: Auditing Windows Firewall Profiles and Settings
05c – LAB: Auditing Firewall Inbound Rules
05d – LAB: Auditing the ICMP (Ping) Firewall Rule
05e – LAB: Auditing the HTTP (Port 80) Firewall Rule
6 - Auditing Windows Event Logs
06a – Overview of Windows Logs and Event Viewer
06b – Basic vs. Advanced Audit Policy Configuration
06c – LAB: Using the Auditpol Command
06d – LAB: Auditing Event Log Files Permissions
06e – LAB: Auditing Windows Event Logs User Rights
7 - Auditing Windows Server Domain Name System (DNS)
07a – Overview of Windows DNS
07b – LAB: Auditing DNS Zones and Records
07c – LAB: Auditing Windows DNS Events
8 - Auditing Windows Transport Layer Security (TLS) Settings
08a – Overview of Transport Layer Security (TLS)
08b – TLS Support In Windows Operating Systems
08c – Transport Layer Security (TLS) Terminologies
08d – LAB: Auditing Transport Layer Security (TLS) Settings
9 - Auditing Windows Network Time Protocol (NTP)
09a – Windows NTP Overview and Terminologies
09b – LAB: Auditing Windows NTP Event Logs
09c – LAB: Auditing Windows NTP Configurations
09d – LAB: Auditing NTP Group Policy Configurations
Course Summary
Auditing Windows Server Active Directory Security – Summary
Sample Lesson
Includes
41 Lessons

Submit a Comment

Your email address will not be published. Required fields are marked *

Pin It on Pinterest