Upcoming Events:
Free Global Active Directory Seminar (Barcelona) -> May 16th
Free Global Active Directory Seminar (Lisbon) -> May 17th
Free Global Active Directory Seminar (Madrid) -> May 18th

Three neglected password policy tips that increase security

Most organizations are familiar with the Microsoft password policy and the features it provides. The password policy from Microsoft for Active Directory domains has been the same for over 17 years now. Some organizations have taken the initiative to implement multi-factor authentication, but for most organizations, these technologies are expensive, cumbersome, complex, and require end […]

The top 3 drawbacks to Microsoft password policies

We have all been living with the Microsoft password policy solution for many years now. It has sufficed, for the most part, untill now, due to password security requirements. There are distinct drawbacks with the Microsoft solution that all corporations need to consider to protect themselves against hackers. Even with Microsoft Windows Server 2012 R2, […]

Auditors vs. admins

As security becomes more and more important each day, there is a need for the IT community to understand the differences between auditors and administrators. The reason we need to keep these different job roles separate is that they are completely different. Auditors Auditors have two primary functions. First, auditors are responsible for ensuring the […]

Powerful reporting of historical Active Directory activities

Every Active Directory administrator has needed to get a report of access, activities, and more from the past actions performed against Active Directory. When you need these reports, it is typically mission critical that you obtain them immediately. The problem is that Active Directory does not track the required level of access, activities, and management […]

Active Directory SACL reporting

ManageEngine has stressed the importance of monitoring and alerting on Active Directory changes for years. With this level of monitoring and alerting, you can see and be notified of any key change in Active Directory with an email! That is powerful. To monitor and alert on Active Directory changes, you need to establish the SACL […]

Advanced audit policy reporting

We at ManageEngine always suggest that you track Active Directory and file changes with advanced auditing in lieu of the traditional audit policy settings. There’s a catch, though: how do you verify that your settings are in place? If you’ve been following our blogs for a while, you know that we truly rely on secpol.msc […]

Tired of troubleshooting Active Directory?

Every Active Directory administrator around the world has the same issue. There is always someone else who can modify Active Directory! When incorrect changes occur, some issue usually arises from the change. A service fails, a user can not access a resource, Group Policy fails to apply, etc. In those situations, it can be difficult, […]

Who said password cracking is dead?

In a recent conference, I was privy to a insightful session on password cracking. No, not pass-the-hash, pass-the-ticket, token manipulation, or other high-tech techniques. Rather, just simple brute force hacks, with some twists. It reinforced what I have been teaching for years, which is that our passwords are nearly worthless. Let me explain. Most organizations […]