AD Domain ServicesArchitecture & Design

How to track rogue domain controllers

August 29, 2025
Tracking Rogue Domain Controllers in Active Directory (Detection + Response Playbook) A rogue domain controller (DC) is any system that is acting as a DC or participating in DC trust/replication without being approved, expected, and controlled. In practice, “rogue DC” includes: An attacker-promoted DC in a compromised domain An unauthorized (shadow IT) DC spun up by an admin or a…
Read more
Microsoft Entra IDTenant & Directory Administration

Implementing Azure AD Connect in a multi-forest environment

May 31, 2024
This is a thorough how-to for setting up Azure AD Connect in a multi-forest setting. You will find detailed instructions for setting up Azure AD Connect so that numerous AD forests are synchronised with Azure AD. We’ll concentrate on making sure that synchronisation runs smoothly across several forests and that their Azure AD environment has a uniform user experience.   What is Azure AD…
Read more
AD Domain ServicesArchitecture & Design

How to raise AD forest functional level

May 29, 2024
What are Functional Levels? An Active Directory functional level determines what capabilities of Active Directory Domain Services (AD DS) are available for a particular forest or domain. The functional levels are specified in terms of Windows Server versions, as each version update brings with it a host of new AD DS functionalities. Functional levels have to be specified because their…
Read more
Security Operations for IdentityZero Trust for Identity

Tackling AI's impact on security with Zero Trust: A guide for CISOs

May 14, 2024
In this webinar, we’ll break down: The evolution of Zero Trust in the era of AI Unpacking how the AI wave has influenced the evolution of Zero Trust principles. Strategies empowering CISOs Equipping CISOs with effective strategies to bolster their defense mechanisms for 2024 and beyond. Real-time insights from Zero Trust implementations Extracting valuable takeaways from real-life Zero…
Read more
Security Operations for IdentityZero Trust for Identity

An IT admin's roadmap to Zero Trust: Defending your organization from generative AI cyberattacks

May 9, 2024
An IT admin's roadmap to Zero Trust: Defending your organization from generative AI cyberattacks Artificial intelligence (AI) is rapidly becoming more powerful and sophisticated. This is good news for many industries, but it's also a major concern for cybersecurity. Hackers use AI to perfect cyberattacks, making them more dangerous…
Read more
GPO FundamentalsGroup Policy & Endpoint Policy

How to block connection to non-domain networks via GPO

November 17, 2023
In the landscape of enterprise IT management, securing network connections is a top priority. One aspect of this is preventing domain-joined computers from connecting to non-domain networks, which can be a significant security risk. This guide provides a comprehensive walkthrough for system administrators on how to block connections to non-domain networks using Group Policy in a Windows domain…
Read more
AD Domain ServicesArchitecture & Design

Configure domain password policy - Here’s how

November 14, 2023
In this article, we delve into configuring the Active Directory Domain password policy, essential for maintaining robust security and compliance within your organization. The following steps, inspired by user interactions and common queries, aim to provide a comprehensive understanding and hands-on approach for advanced system administrators. Prerequisites for Configuring Domain Password…
Read more
AD Domain ServicesArchitecture & Design

Before migrating to Active Directory Domain Services (AD DS) 2022

October 31, 2023
In today’s dynamic IT landscape, the need for organizations to be agile and adaptable is more pronounced than ever. Active Directory Domain Services (AD DS) stands as the cornerstone of organizational identity. While the allure of designing a brand-new AD infrastructure can be strong, especially with the ever-evolving features and security enhancements, the reality for most organizations is…
Read more
Microsoft Entra IDTenant & Directory Administration

How to configure Azure DNS for Custom Domain Names

October 11, 2023
In the dynamic realm of cloud computing and modern enterprise operations, Azure Active Directory (Azure AD) stands as a linchpin for secure identity management and access control. As organizations increasingly migrate their workflows to the cloud, the significance of a robust and adaptable identity management solution cannot be overstated. Managing Azure AD, customizing the Domain Name System…
Read more
Microsoft Entra IDTenant & Directory Administration

Azure AD DNS for Custom Domain Names with Advanced DNS Settings  

June 30, 2023
I. Introduction Azure AD Domain Name System (DNS) plays a crucial role in managing custom domain names and advanced DNS settings within the Azure Active Directory (AD) environment. In this article, we will explore the process of configuring Azure AD DNS for custom domain names and delve into advanced DNS settings. Understanding and properly configuring these settings is essential…
Read more