The world's most trusted forum on Active Directory Security
I would like to know if there are any well-established guides or checklists for securing Active Directory installations / deployments / environments?
We have just taken over the management of the Active Directory of one of our customers, and have been asked to conduct assess the current security state of this Active Directory, as well as make recommendations so that we can enhance its security and demonstrate enhancements in a reasonable time-frame.
I am familiar with Microsoft's Best Practice Guide on Active Directory security but that is very detailed and time consuming to go through and implement quicckly. We prefer a 80/20 approach, and are looking for something simpler that can help us at least pick all the low-hanging fruit immediately, and then focus on the advanced stuff later, as we need to get initial buy-off.
Does anyone have any recommendations?
"An imbalance between rich and poor is the oldest and most fatal ailment of all republics." - Plutarch