Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
Active Directory Security
Rating: 4.5 out of 5(3 ratings)
25 students

Active Directory Security

Master Active Directory Security: Detect, Defend & Harden Your Infrastructure
Created byDavid Horák
Last updated 4/2025
English

What you'll learn

  • Understand AD security concepts, replication, and authentication methods
  • Identify vulnerabilities in AD, including misconfigurations and privilege escalation risks
  • Master GPO hardening to enforce security policies across your Windows environment
  • Secure Active Directory Certificate Services (AD CS) and prevent abuse
  • Learn attack paths with BloodHound and defend against escalation techniques
  • Implement the Tiering Model and best practices to protect privileged accounts
  • Deploy security baselines to enforce least privilege and detect anomalies.

Course content

2 sections14 lectures9h 35m total length
  • Introduction2:51
    • Meet your instructor and find out, what does the course offer

  • Basics - part 11:15:14
    • Understand how Active Directory works and explore its components

    • Topics include hierarchy, trusts, FSMO roles, RODC (Read-Only Domain Controller), and service accounts

  • Basics - part 21:18:45
    • Understand how Active Directory works and explore its components

    • Topics include hierarchy, trusts, FSMO roles, RODC (Read-Only Domain Controller), and service accounts

  • Quiz - Basics
  • Authentication1:08:58
    • Dive into the background of authentication protocols Kerberos and NTLM

    • Learn how to configure and enhance their security

    • Explore authentication policies

  • Quiz - Authentication
  • Group Policy Objects (GPO)53:03
    • Master the proper usage of GPOs and understand how they function

  • Quiz - Group Policy Objects (GPO)
  • Active Directory Certificate Services (AD CS)52:10
    • Explore asymmetric cryptography within the Windows Infrastructure

    • Understand the architecture of AD CS and best practices for its administration

  • Quiz - Active Directory Certificate Services (AD CS)
  • Vulnerabilities1:06:53
    • Investigate common vulnerabilities and persistent attack methods in Active Directory.

    • Learn how to search for vulnerabilities and perform security scans.

    • Topics include AD certificate services ESC vulnerabilities, Kerberos delegation, Entrust ID Connect server, misconfigured ACLs, DCSync, hidden accounts, and more.

  • Quiz - Vulnerabilities
  • Attack Paths45:32
    • Utilize BloodHound to discover escalation paths within Active Directory

    • Observe how attackers proceed in the attack process

  • Quiz - Attack Paths
  • Tiering Model52:05
    • Understand what a tiering model is and why it’s crucial for effective security

    • Learn how to implement it within your infrastructure

  • Quiz - Tiering Model
  • Security Baselines49:26
    • Explore the concept of security baselines and their significance

    • Discover practical steps for implementing security baselines effectively

  • Quiz - Security Baselines
  • Outroduction0:47

    Thank you for attending. We really appreciate it.

    • Please, do not forget to finish the whole course to obtain the certificate.

    • If you have any kind of feedback, please let us know

  • Free Resources0:37
  • Final Test - Active Directory Security

Requirements

  • Beginner-friendly, but familiarity with Windows OS and Active Directory basics is recommended
  • No advanced security knowledge is required—this course will guide you step by step through AD security concepts
  • A virtual lab or test environment is beneficial for hands-on practice but not mandatory

Description

Master Active Directory Security and Stop Cyber Threats Before They Happen

Active Directory is the backbone of most organizations, but it is also a prime target for attackers. Misconfigurations and outdated security practices can leave your infrastructure vulnerable. This course provides a deep technical understanding of Active Directory, its components, and how attackers exploit weaknesses. You will learn how to defend against real-world threats, implement security best practices, and use the right tools to assess and strengthen your environment.


What You Will Learn:

  • Active Directory Fundamentals – Hierarchy, Trusts, FSMO Roles, RODC, Service Accounts

  • Authentication Security – Deep dive into Kerberos, NTLM, authentication policies, and secure configurations

  • Group Policy Management – Properly configure GPOs to enforce security settings and avoid common misconfigurations

  • Active Directory Certificate Services (AD CS) – Secure your PKI, mitigate certificate-based attack vectors

  • Common AD Exploits and Defense Strategies – Kerberoasting, ACL misconfigurations, DCSync, and other high-risk attack techniques

  • Attack Path Mapping with BloodHound – Learn how adversaries escalate privileges and how to prevent it

  • Real-World Hardening Techniques – Scan your AD for vulnerabilities, apply industry security standards, and improve resilience


Bonus:

  • Includes an AD security scanning script to detect vulnerabilities

  • Exam included to apply your knowledge


This course is designed for IT administrators, security engineers, and ethical hackers looking to enhance their Active Directory security skills.


Enroll now and start securing your Active Directory today.

Who this course is for:

  • Windows Administrators and IT professionals managing Active Directory environments.
  • Cybersecurity engineers and penetration testers securing Windows infrastructures.
  • SOC analysts and incident responders investigating Active Directory security threats.
  • Anyone looking to strengthen their Active Directory security knowledge with deep technical insights and practical best practices.