Auditing Windows Server Active Directory Security

Current Status

Not Enrolled

Price

$50.00

Get Started

Take this Course

Auditing Windows Server Active Directory Security

The Auditing Windows Server Active Directory Security course will showcase and demonstrate practical steps, in assessing and reviewing the management and security of Windows Servers and Clients.

In this course, you will learn the key enterprise principles and practices in auditing a Windows Server Active Directory infrastructure, including how to identify potential security risks and misconfigurations, review Group Policy auditing settings, and analyze Windows event logs.

You will also gain practical experience in using in-built windows features, and free/open source tools to independently verify various Windows Server Active Directory settings and configurations.

Information Technology and Cybersecurity auditors, and general IT enthusiasts, will be better equipped to analyze, test, review and verify the key configurations and security of Windows Systems for compliance.

Download VMware Workstation - https://www.vmware.com/products/workstation-pro.html
Download Parallels for macOS - https://www.parallels.com/products/desktop/
Download Windows 10 Pro - https://www.microsoft.com/en-us/software-download/windows10ISO
Download Windows 10 Enterprise - https://www.microsoft.com/en-us/evalcenter/download-windows-10-enterprise
Download Windows Server 2019 - https://www.microsoft.com/en-us/evalcenter/evaluate-windows-server-2019
Download Microsoft Edge - https://aka.ms/EdgeEnterprise
Download the Microsoft Security Compliance Toolkit - https://www.microsoft.com/en-us/download/details.aspx?id=55319
Download the Local Administrator Password Solution (LAPS) - https://www.microsoft.com/en-us/download/details.aspx?id=46899
Download Windows Admin Center - https://www.microsoft.com/en-us/evalcenter/download-windows-admin-center
Download LDAPSoft Active Directory (AD) Browser - https://ldapsoft.com/adbrowserfree.html
Download Nmap - https://nmap.org/download.html
Download Microsoft Edge Group Policy Administrative Templates - https://www.microsoft.com/en-us/edge/business/download
Download Microsoft Office/365 Group Policy Administrative Templates - https://www.microsoft.com/en-us/download/details.aspx?id=49030

Course Content

Course Overview

Overview of Auditing Windows Server Active Directory Security Sample Lesson

1 - Auditing Group Policy Objects (GPOs)

01a – Auditing Group Policy Objects (GPOs) using Group Policy Management

01b – Auditing Group Policy Objects (GPOs) Using Policy Analyzer

2 - Auditing AD Users, Groups and Organizational Units (OUs)

02a – Overview of AD Users, Groups and Organizational Units (OUs)

02b – Overview of LDAPSoft AD Browser with Query Examples

02c – Auditing AD Objects Using Built-in AD Features

02d – Auditing AD Objects Created Within a Custom Period

02e – Auditing AD Objects in the Administrators Group

3 - Auditing Administrative Accounts Security

03a – Overview of Active Directory Administrative Accounts

03b – Audit the ‘Account is sensitive and cannot be delegated’ AD Option

03c – Audit the ‘Access this computer from the network’ User Right

03d – Audit the ‘Allow log on through Remote Desktop Services’ User Right

03e – Audit Members of the Enterprise Admins Group

03f – Auditing Local Administrator Accounts

03g – LAB: Auditing Local Administrator Accounts Using LAPS

4 - Auditing Windows Ports, Protocols, and Services

04a – Overview of Ports, Protocols, and Services

04b – Mapping Ports to Applications and Services

04c – LAB: Auditing Open Ports and Services with Nmap

04d – Auditing Ports Using Port Query

5 -Auditing Windows Firewall Policies and Rules

05a – Overview of Windows Firewall with Advanced Security

05b – LAB: Auditing Windows Firewall Profiles and Settings

05c – LAB: Auditing Firewall Inbound Rules

05d – LAB: Auditing the ICMP (Ping) Firewall Rule

05e – LAB: Auditing the HTTP (Port 80) Firewall Rule

6 - Auditing Windows Event Logs

06a – Overview of Windows Logs and Event Viewer

06b – Basic vs. Advanced Audit Policy Configuration

06c – LAB: Using the Auditpol Command

06d – LAB: Auditing Event Log Files Permissions

06e – LAB: Auditing Windows Event Logs User Rights

7 - Auditing Windows Server Domain Name System (DNS)

07a – Overview of Windows DNS

07b – LAB: Auditing DNS Zones and Records

07c – LAB: Auditing Windows DNS Events

8 - Auditing Windows Transport Layer Security (TLS) Settings

08a – Overview of Transport Layer Security (TLS)

08b – TLS Support In Windows Operating Systems

08c – Transport Layer Security (TLS) Terminologies

08d – LAB: Auditing Transport Layer Security (TLS) Settings

9 - Auditing Windows Network Time Protocol (NTP)

09a – Windows NTP Overview and Terminologies

09b – LAB: Auditing Windows NTP Event Logs

09c – LAB: Auditing Windows NTP Configurations

09d – LAB: Auditing NTP Group Policy Configurations

Course Summary

Auditing Windows Server Active Directory Security – Summary Sample Lesson

Subscribe

0 Comments

Inline Feedbacks

View all comments

Pin It on Pinterest