The hidden benefit of hacking your own Active Directory?

This summary stems from a brief conversation within a peer circle. A parallax perspective on the issue of passwords. Most IT organisations have an IT Security policy, which defines the required password parameters for an organisation.  Active Directory provides a method to enforce the password parameters, from their complexity and length to the frequency that they must … Continue reading The hidden benefit of hacking your own Active Directory?

Best Practices for Securing Active Directory

  Microsoft have released a new document which contains best practice recommendations to assist organisations in enhancing the security of their Active Directory installations. Microsoft state that “In implementing these recommendations, organisations will be able to identify and prioritise security activities, protect key segments of their organisation’s computing infrastructure and create controls that significantly decrease … Continue reading Best Practices for Securing Active Directory

Threats and Countermeasures Guide: Security Settings in Windows 7 and Windows Server 2008 R2

  If you are looking to understand what the security policies in Windows 7 and 2008 R2 mean and how they can impact your environment, then this guide is a must read. Threats and Countermeasures Guide: Security Settings in Windows 7 and Windows Server 2008 R2 The document is covers the following categories in some … Continue reading Threats and Countermeasures Guide: Security Settings in Windows 7 and Windows Server 2008 R2

Microsoft Forefront Identity Manager 2010 – Technical Overview

I read with interest this document posted this morning by Brjann Brekkan, Technical Product Manager at Microsoft on the Identity and Access Management Blog.  I would recommend reading this document to anyone looking to understand the basics of Forefront Identity Manager 2010. Document Summary This document provides a technical overview of Microsoft Forefront Identity Manager … Continue reading Microsoft Forefront Identity Manager 2010 – Technical Overview

Must Watch – Authentication and Passwords: The Good, the Bad and the Really Ugly! Windows Security Insight from TechED North America.

Last week I was in New Orleans for TechED North America. I had the privilege of working on the Security and Identity Access stand answering Active Directory related questions. When I was not working on the stand, I managed to attend a few breakout sessions, one of these sessions was by Marcus Murray. If you … Continue reading Must Watch – Authentication and Passwords: The Good, the Bad and the Really Ugly! Windows Security Insight from TechED North America.

Lenovo “Open File – Security Warning” after installing Windows 7 Drivers.

Over the May Day Bank Holiday weekend, I spent some of my time rebuilding my laptop. The last time I rebuilt my laptop – Windows 7 had just RTM’d; all the drivers were still beta and Lenovo offered very limited Windows 7 support.  This time Lenovo had all the drivers readily available and Windows Update took … Continue reading Lenovo “Open File – Security Warning” after installing Windows 7 Drivers.

Security Compliance Manager (Guidance on how to harden your Windows environments).

The Security Compliance Manager is a free Solution Accelerator from Microsoft which has been designed to enable organisations  to take advantage of the experience of Microsoft security professionals and reduce the time and cost required to harden Windows infrastructure. The Security Compliance Manager provides access to the complete database of Microsoft recommended security settings; using this information … Continue reading Security Compliance Manager (Guidance on how to harden your Windows environments).