SYNAXON

Practical workshop | Active Directory Security

What awaits you

Contents

EXAM
Practical workshop | Active Directory Security
NO
4 days

  • Introduction and best practices for installing domain controllers
  • Homegrown security problems in Active Directory
    • Understanding Kerberos
    • NTLM vs. Kerberos
    • SMB (versions, attack scenarios, secure use)
    • PAC validation and the problems with Microsoft's implementation of Kerberos
    • PTH – Pass the Hash/Silver Ticket/Golden Ticket/Skeleton Key
  • Kerberos Ticket Service
    • Change Kerberos passwords
  • Prevent credential theft
    • Attack scenarios (PTH – Pass the Hash/Silver Ticket/Golden Ticket/Skeleton Key)
    • Windows Defender Credential Guard, Windows Defender Remote Credential Guard BitLocker, Windows Defender Device Guard, AppLocker, Windows Defender Application Guard
  • Understanding concepts
    • Operating animal models
    • Red Forest/Golden Forest/Bastion Forests
    • Single-domain model, highly secure
  • Clean Installation Source
    • Verify the hash values of the *.iso files
    • Fciv.exe or PowerShell
    • 7-Zip and Igor Hasher
  • Setting up the first domain controller
    • Understanding ms-ds-machineaccountquota
    • redircmp is used for new computer systems
    • Use redirusr for new users
    • BitLocker and TPM 1.2 vs. 2.0
    • BitLocker and pre-boot authentication
    • AppLocker
    • Monitoring (AD Audit Plus, CyberArk)
    • Secure backup and recovery of BitLocker-protected backup volumes
    • Firewalling on domain controllers
    • Configure IPSec with RDP
    • Hardening domain controllers according to Center for Internet Security/gpPack&PaT/SIM/LDA/Microsoft tools
  • Setting up additional domain controllers
    • Secure deployment of domain controllers, member servers and clients via MDT
      • Installation and configuration of MDT highly secure
      • Hardening of MDT servers
      • Deploying highly secure member servers and clients
  • Securely operate domain controllers via IPSec
    • IPSec monitoring via MMC
  • Setting up a PKI server as an internal trusted root CA
    • Enable automatic certificate deployment via Group Policy
    • Enrollment of non-standard certificates
    • PKI hardening according to Center for Internet Security/gpPack&PaT/SIM/LDA/Microsoft tools
  • Jump Server and Privileged Access Workstation (PAW) – Understanding and Implementing Concepts
    • Setting up and configuring Jump Servers (RSAT installation, installing ADMIN Center with a valid certificate from a Trusted Root PKI, BitLocker and TPM 1.2 vs. 2.0, BitLocker and pre-boot authentication, AppLocker, configuring IPSec with RDP, backing up Jump Servers to BitLocker-protected volumes, firewalling on Jump Servers)
    • Hardening of Jump servers according to Center of Internet Security/gpPack&PaT/SIM/LDA/Microsoft tools
    • Setting up and configuring PAWs (BitLocker and TPM 1.2 vs. 2.0, BitLocker and pre-boot authentication, configuring AppLocker, IPSec and RDP, backing up PAWs to BitLocker-protected volumes, firewalling on PAWs)
    • Hardening domain controllers according to Center for Internet Security/gpPack&PaT/SIM/LDA/Microsoft tools
  • Security in domain networks
    • 802.1X with MAC addresses/certificates
    • Disable MAC flooding on switches and hubing mode
    • IPSec with Kerberos and certificates
  • Windows Defender Advanced Threat Protection (WDATP)
    • Understanding the concept of WDATP
    • Deploy and monitor WDATP
      WDATP on domain controllers/jump servers and PAWs/Windows 10 clients

Goal

In this workshop, we will show you the importance of protecting your Active Directory. You will learn to understand and prevent various attack scenarios and implement an Active Directory solution that can withstand these attacks.

Requirement

  • Experience with Active Directory
  • Experience with client systems

Miscellaneous

  • Services already included in the seminar price:
    • Conference catering
    • Digital Microsoft training materials
  • Possible expenses:
    • Overnight stays
    • Additional catering
    • Examination fee

All details at a glance

today Start:

June 23, 2026, 09:00

timer End:

June 26, 2026, 5:00 PM

place Location:

Bensheim

category Category:

payments Net price:

€1290

hearing Language:

German

Book now

    Your data has been successfully transmitted

    check Thank you for your booking!
    Your data has been successfully submitted. You will receive a confirmation email from us shortly.

    Make another booking

    Fill out the booking form and register!

    Step 1: Fill in the participant data

    Step 2: Add this participant

    You can only complete the booking after you have added at least one participant

    All seminars, downloads, workshops, etc. are exclusive to our SYNAXON partners. Are you working in the IT industry but not yet a SYNAXON partner? Then join us. here Contact us.

    This event is an exclusive offer for our iTeam partners. Not yet an iTeam partner and want to take advantage of this offer? You can find further information here.

    Step 3: Complete booking

    Book bindingly For 0.00

    * Mandatory fields

    Please note: This is a binding booking for this event. Cancellation fees may apply. For further information, please refer to the general booking conditions or cancellation information. Prices are exclusive of VAT.

    Summary

    expand_less

    today Start:

    June 23, 2026, 09:00

    timer End:

    June 26, 2026, 5:00 PM

    place Location:

    Bensheim

    info Price information:

    hearing Language:

    German

    payments Total price:

    0.00  €

    AI in Focus: The exchange and expert roundtable on AI in the system house

    How can I use AI in a systems house effectively and to increase profits? This is just one of the questions we will address in the exchange and expert panel.

    Learn more

    Expert panel for system administrators

    The daily challenges posed by new technologies and complex software solutions for IT technicians, support staff, and administrators are significant. This makes continuous training and exchange all the more important.

    Learn more

    Focus group: Optimizing tools, processes and billing in the system house

    The challenges facing IT service providers are significant. New technologies, such as AI and complex software solutions, are an essential part of this.

    Learn more

    Get in touch with us!

      Your message has been successfully sent

      check Thank you for your message!
      Your data has been successfully submitted and we will contact you as soon as possible.

      We are happy to answer any questions you may have about the SYNAXON Academy!

      *Required field

      Please note our privacy policy .

      Not a SYNAXON partner yet? Then fill out your SYNAXON partner contract online here!

      To the online contract

      Still questions?

      Our sales department is at your disposal

      Mon-Fri from 8am-5pm!

      SYNAXON Academy

      05207 9299222

      akademie@synaxon.de

      Not a SYNAXON partner yet? Then fill out your SYNAXON partner contract online here!

      To the online contract
      arrow_upward