Zum Hauptinhalt springen Zur Suche springen Zur Hauptnavigation springen
Sind Sie bereits Abonnent? Hier einloggen oder neu registrieren und Vorteilspreise nutzen!
  • Versandkostenfrei im Inland
  • Praxisnah und plattformübergreifend
  • Unabhängig und neutral
  • Häufig weiterempfohlen

Online Seminar Active Directory Security (english-speaking)

Produktinformationen "Online Seminar Active Directory Security (english-speaking)"

Whether it’s ransomware attacks or data leaks – Active Directory has played a key, and often decisive, role in most recent cyberattacks.

Over the past few years, thousands of companies have conducted security audits and are now working to implement the findings in their AD environments. Meanwhile, many other organizations assume they are secure – without having a clear picture of their actual threat exposure.

In this seminar, you will learn about the various attack vectors targeting and leveraging Active Directory, how to apply secure configurations and administrative practices, and how to properly assess the results of a security audit.


Agenda:

Active Directory as target and conduit for cyberattacks
  • Brief history of AD, questionable design decisions and how attackers abuse them
  • Attackers think in graphs: classification of typical attack paths
  • A short recap of authentication and authorization mechanisms in Windows: NTLM, Kerberos & Co.

AD Administrator’s toolbelt
  • LDAP, LDAP Browser, ldp.exe
  • PowerShell in the context of Active Directory
  • Further built-in tools for AD management and reconnaissance
  • Free audit tooling
  • Event Log investigation using PowerShell and other means 

Systems Hardening: Defending against credentials theft
  • General hardening of Domain Controllers and member systems
  • Account and group hygiene
  • Tiering and Zoning
  • Network segmentation
  • Privileged Access Workstations
  • AD routine maintenance 

Security-oriented AD design
  • Forest and domain topologies
  • Read Only Domain Controllers as a hardening measure
  • Permissions in AD
  • Group Policies
  • AD and Domain Controller backup
  • Restricting NTLM and Kerberos
  • PKI and its impact on AD security 

Audit and tracking
  • Configuration audit and dealing with the findings
  • Permissions audit, effective permissions
  • Reactive behaviour monitoring usung Event Logs 

Identity and security in hybrid environments
  • Entra ID Connect and Cloud Sync
  • SSO from on-premises AD to Entra ID
  • SSO from Entra ID to on-premises AD


Dates:

ONLINE: December 1–3, 2025

The online intensive seminar will begin at 9:00 AM on day one and conclude at approximately 3:30 PM on day three.

Requirements:

Participants must have two monitors (or alternatively, a modern widescreen monitor), a webcam, and a headset.

 
Speaker/Seminar Lead:

Evgenij Smirnov brings over 25 years of consulting experience in the Microsoft ecosystem. He is a consultant, systems and security architect, author, user group leader, and conference speaker. He regularly shares insights from his consulting and implementation projects as well as his own research through his blog, online forums, and numerous talks and training sessions.
He has been repeatedly recognized with the Microsoft MVP Award and is the author of "Building Modern Active Directory", published in November 2024.

Participation Fee:

€1,547 incl. VAT for IT-Administrator subscribers
€1,785 incl. VAT for non-subscribers

The fee includes full access to the intensive seminar and all accompanying documentation.


Not yet a subscriber? A trial subscription (6 issues for the price of 3) already qualifies you for the discounted rate. 
Order your trial subscription now!

The number of participants is limited to 8 people.

By placing your order, you agree to our General Terms and Conditions for Seminars. 

Should you encounter any difficulties registering through the shop, please don’t hesitate to reach out to us at seminare@heinemann-verlag.de. If registration via the shop is not possible due to language barriers, please simply register using this email address. We need the participant's full name and email address and the billing address. For customers from abroad, we also require the VAT ID if available.