Name: Better Password Hygiene in Active Directory
Start: 2023-08-16T17:00:00Z
End: 2023-08-16T17:00:59.000Z
Location: BrightTALK
Rating: 0

Netwrix empowers security professionals to face digital threats with confidence by enabling them to identify and protect sensitive data as well as to detect, respond to, and recover from attacks. More than 13,500 organizations across 100+ countries rely on Netwrix solutions to strengthen their security and compliance posture across all three primary attack vectors: data, identity, and infrastructure. By reducing the cybersecurity burden with Netwrix, organizations concentrate on advancing their cause while reducing cyber risk.

For more information, visit www.netwrix.com

Transitioning to Microsoft Intune and Entra ID can be challenging for organizations accustomed to using Group Policy and SCCM for endpoint management and security. The differences in policies, granularity, and capabilities between Intune and SCCM often lead to security gaps, a poor end-user experience, and inefficiencies in managing endpoints.   
Fortunately, Netwrix offers a solution that simplifies this transition for Group Policy and SCCM Administrators. 
 
Join 18-time Microsoft MVP and Group Policy expert Jeremy Moskowitz to discover how Netwrix PolicyPak bridges the gaps in endpoint management and security during and after your migration to Entra ID and Microsoft Intune. In this webinar, you'll learn how Netwrix PolicyPak can: 
  
- Consolidate and merge legacy GPOs to streamline Intune migrations. 
- Ensure 100% policy parity between Microsoft Intune and Group Policy. 
- Address the security limitations of Intune's Endpoint Privilege Management add-on. 
- Integrate seamlessly with other Netwrix products, including Netwrix Auditor and Netwrix Privilege Secure. 
  
Don't miss this chance to learn how Netwrix PolicyPak simplifies your migration to Intune and Entra ID.  Register now to secure your spot!

Streamlining Your Migration from Group Policy and SCCM to Intune and Entra ID

In the last twenty years, privileged access management (PAM) has gone through many evolutions to keep pace with the ever-changing cyberthreat landscape. Still, a vital risk remains front and center: Privileged accounts are crucial for the day-to-day work of admins, but they are usually needed for only short periods of time — the rest of the day, they can be compromised by attackers and misused by insiders.

Old-school PAM solutions reduce this risk only to some extent, while being costly and time-consuming to deploy. But it doesn’t have to be this way! In this session, we’ll explore a modern, easy-to-adopt approach that deals with this core problem head-on.

Join this session to learn how you can:
- Leverage privilege orchestration to remove known attack surfaces when at rest
- Dynamically delegate access according to use case without impeding admin efficiency
- Quickly adopt modern PAM tools to centrally control and audit access

Security Renaissance: Why it's time to break with old-school PAM solutions

This is a Identity professionals have traditionally focused on compliance and governance activities, while leaving Security Operations to the Cybersecurity team to monitor the endpoint (EDR) and network (NDR), potentially missing Identity Threats. Cloud adoption has made identity a primary target for cyber security attacks, making it one of the key vectors of attack expansion after infiltration.

As a result, Identity professionals need to consider an Identity Threat Detection and Response (ITDR) program and how to integrate it into their organization’s larger Security Operations Center (SOC). In this webinar, we will discuss the considerations that should be made when bringing on an ITDR program and how to incorporate it into an organizations larger SOC program. By doing so, you can ensure that your organization is well-protected against identity-based cyber threats.shell webinar

Adapting to a New Paradigm in Security: Implementing Identity Threat Detection and Response in Your SOC

À l'ère numérique, la gestion des identités doit être évolutive pour assurer la sécurité des données contre les cyberattaques sophistiquées et respecter les réglementations. Souvent lancés en urgence, les projets de gouvernance des identités doivent être anticipés stratégiquement. Plutôt que de réagir à une compromission, il est préférable d'établir des politiques robustes dès le départ. Nos experts vous fourniront de précieux conseils pour établir une stratégie moderne et efficace de gestion des identités, adaptée aux défis actuels.

Optez pour une gestion et une gouvernance des identités faciles à déployer et à maintenir:
- Solution prête à l'usage dès J 0
- Interface simple et intuitive 
- Autonomie des clients

Sélectionnez une solution innovante qui offre des bénéfices rapides
- Résultats concrets en peu de temps
- Gains mesurables et visibles par votre direction
- Mode de déploiement itératif pour des quick wins récurrents

Utilisez le Machine Learning pour améliorer la gestion et la gouvernance des accès
- Modèle de rôles plus efficace 
- S'adapter à l'évolution permanente de l'entreprise
- Réduction des erreurs humaines

Révolutionner la gouvernance des identités à l'ère numérique : l'IGA 2.0

Note: This is a replay of the webinar with Randy Franklin Smith.

If privileged accounts are the most protected, why do they keep appearing in exploits, like the recent Snowflake/Ticketmaster incident?

The reasons are two-fold:
- Privileged accounts are prime targets.
- Many organizations don’t follow best practices.

In this session on “Assessing the Security of Your Active Directory,” цу]we’ll focus on privileged accounts to help you improve controls and reduce risks. We’ll cover:

Identifying privileged accounts beyond just the Administrators group, including indirect vectors like AD object permissions and Windows system rights.

Using Windows Security Logs to track privileged account logons. Limiting privileged account use to same-security-tier endpoints is crucial, as an admin account is only as safe as the endpoint it’s used on. For instance, some Snowflake contractors reportedly used personal computers with infostealer malware.

Implementing security tiers for accounts, servers, and endpoints to prevent privileged accounts from being exposed to less secure tiers.
Addressing specific risks and controls for privileged accounts in Active Directory.

Our sponsor, Netwrix, offers tools perfect for this topic. Netwrix Auditor can:
- Report on privileged accounts in Active Directory.
- Monitor logons and alert to suspicious activity.
- Generate audit trails and reports for privileged activities.
- Help prepare for audits and ensure compliance.

Jennifer Taufan, Solutions Engineer at Netwrix, will demonstrate these capabilities.

Assessing the Security of Your Active Directory: Privileged Account Risks and Controls

CISOs must often tackle critical IT problems with limited resources and budgets. Effective identity governance and administration (IGA) is a cornerstone for success, especially when it comes to cybersecurity. Unfortunately, IGA projects have traditionally been notoriously long, costly and inflexible. 

Netwrix offers a complete, modern approach to IGA that reduces both total cost of ownership (TCO) and time to value — without sacrificing critical IGA functionality. 

Watch this webinar to discover how this innovative solution enables you to: 
- Leverage state-of-the-art AI and ML to slash IGA implementation time by months or even years and continuously tune your access controls 
- Minimize business disruption with a flexible data model and workflows that can be quickly adapted to your business processes 
- Rapidly build out connectors, in many cases without consultants 
- Avoid costly vendor code reviews with a "low code, no code" model 
- Reduce the risk of risky excessive permissions with separation of duties (SoD) 
And more 

Come see for yourself why Netwrix has been named a leader in the IGA market by top analysts and is trusted by hundreds of enterprise clients worldwide.

Faster IGA Success, Lower TCO with Netwrix

Ready to unlock the full potential of Privileged Access Management (PAM)? 

This is an immersive webinar where we'll navigate the twists and turns of PAM deployment with expert precision. Discover common pitfalls, gain actionable insights, and explore innovative strategies to ensure a flawless rollout. Plus, don't miss our exclusive product demo of Netwrix Privilege Secure, showcasing its power in action. From tackling deployment challenges to crafting a roadmap for success, this session is your ticket to mastering PAM deployment and fortifying your organization's security. 

Watch the session to learn how to:
- Identify common pitfalls hindering PAM deployment
- Gain actionable insights and best practices for seamless implementation
- Explore innovative strategies to maximize the effectiveness of your PAM solution
- Witness the power of Netwrix Privilege Secure in an exclusive product demo

Unlocking PAM Power: A Roadmap to Deployment Success

Endpoint Protector knowledge specialist, Chris Roney, Sales Director, will discuss why the endpoint needs to be a higher priority in your in-data security strategy, today and in the future:  

- Why endpoint DLP is crucial for safeguarding your organization's sensitive data in today's ever-evolving security landscape  
- How endpoint DLP can shield your organization from the high costs associated with data breaches  
- How Endpoint Protector empowers organizations to secure their data while ensuring compliance with regulatory requirements  

Netwrix Endpoint Protector is a leading developer of endpoint centric Data Loss Prevention (DLP) solutions and security software. Endpoint Protector is an ideal choice for companies running on multi-OS networks, and the solution’s modular format allows them to mix and match the right tools to serve specific needs.   

Come see for yourself why our product has been named a leader by G2 and is trusted by hundreds of clients worldwide.

How Endpoint Data Loss Prevention Can Strengthen Your Compliance Strategy

The variety of ways organizations create, store and share data is mind-blowing, making it more and more difficult for you to determine what needs to be secured. With Netwrix Data Classification, you can identify and classify sensitive and business-critical content across your organization and focus your data security efforts on that data.

Join this session and find out how to:

- Accurately identify sensitive information and reduce its exposure.
- Slash expenses on data storage by cleaning up obsolete or trivial information.
- Spot suspicious activity around your data.
- Respond to legal requests without putting your business on hold.

Netwrix Data Classification Demo: Discover & Secure Sensitive Data

In this session, we will focus on safeguarding sensitive data and protecting SQL servers from unauthorized access. This session will cover effective strategies for identifying and mitigating excessive file reads and unauthorized access to sensitive information.

Join this session to gain insights into:
- Demonstrating "Snaffler" to explore SMB shares/files and discover hidden secrets.
- Using nmap and other tools to locate SQL servers.
- Performing password spraying attacks on SQL "sa" accounts.
- Exploiting stored procedures to capture, crack, or relay domain admin accounts.

Advanced Strategies for SQL Server Protection & Sensitive Information Security

Implementing an Identity Governance and Management (IGA) solution is an essential basis for ensuring, among other things, that the right authorizations are given to the right people, at the right time, for the right reasons.

Join this webinar for :

- View the user-friendly interface of Netwrix Usercube in action
- Discover a full-featured Identity Governance and Administration Solution
- Understand the gains you can make

Netwrix Usercube Demo: Automate Your Identity Management with Netwrix

L’intelligence artificielle est une opportunité pour de nombreux secteurs tout autant que de défis.

Mais qu’en est-il pour les projets d’IGA ?

Dans ce webinaire, vous découvrirez la proposition de valeur de l’IA dans les projets de Gouvernance des Identités, les différentes thématiques sur lesquelles elle peut avoir un impact significatif, que ce soit via le Machine Learning (notamment pour la gestion des rôles, de la gestion des écarts, dans les campagnes de recertification), l’IA ou la GenAI.

Intelligence artificielle, une révolution pour l’IAM

In today's rapidly evolving cybersecurity landscape, attackers are leveraging advanced tools like generative AI to find new ways to compromise your IT infrastructure. Join us for an insightful webinar where experienced pentester and white-hat hacker Brian Johnson will demonstrate how real-world hackers use tools like ChatGPT to craft sophisticated attacks. More importantly, you'll learn how to detect and prevent these threats.
 
During this session, we will delve into key strategies for strengthening your cybersecurity defenses. This comprehensive webcast will equip you with the knowledge and tools necessary to safeguard your organization’s critical assets.
 
Join us to gain insights into:
- Mitigating Active Directory password spraying attacks.
- Identifying accounts with non-expiring passwords and testing their resilience against weak passwords.- 
- Detecting users in groups with excessive permissions, such as those in "maintenance" groups capable of resetting passwords on key accounts or performing DCSYNC with domain controllers.
- Understanding the role and significance of AdminSDHolder in maintaining security.
 
Don't miss this opportunity to enhance your cybersecurity posture and protect your organization from sophisticated threats.

Mastering Password Security & Active Directory Monitoring

Alors que beaucoup de projet d'IGA d'entreprise se terminent mal ou dans des délais peu respectés, découvrez lors de cette session toute la puissance mais surtout la simplicité de l'approche d'un projet IGA avec la solution Netwrix Usercube. 

Regardez notre webinaire pour savoir comment :
- Comment automatiser, gérer et contrôler les identités de votre entreprise avec Netwrix Usercube
- Comment résoudre les problèmes de sécurité, de conformité et de productivité associés aux nouveaux arrivants, aux changements de postes et aux départs de collaborateurs
- Et de plus encore

L'IGA complète mais simplifiée avec Netwrix Usercube

A misused identity can lead to costly business disruptions via unauthorized access to sensitive security & distribution groups. Netwrix GroupID automates groups & user management to ensure group memberships are up to date & secure.

Netwrix GroupID enables you to reduce the risk of data breaches and business disruptions resulting from compromised or misused identities.

Join us for a 30-minute demo and learn how to:

- Automate Group Management via Criteria-based Smart Groups
- Intelligently Nest Groups to Reflect Organizational Hierarchy
- Delegate User & Group Management via Self-Service Portal
- Automate User On-Boarding & Off-Boarding via CSV Import

Netwrix GroupID Demo: Automate AD & Azure AD Groups & Users Management

Découvrez le "Light-IGA" : Comment automatiser facilement la gestion de vos annuaires AD, EntraID et Google Workspace

Venez découvrir la solution Netwrix GroupID et, au travers d'une démonstration complète, ses nombreuses fonctionnalités d'automatisation de la création, modification, suppression des utilisateurs, des groupes et des mots de passe. Découvrez également ses capacités pour permettre à l'utisateur ou aux managers de gérer les comptes directement via une interface web extrèmement conviviale.

Comment automatiser la gestion de vos annuaires AD, EntraID et Google Workspace

In this electrifying session, Brian Johnson, a master of the digital underworld, will pull back the curtain on the enigmatic world of real hackers, revealing their ingenious tricks, from the stealthy art of password spraying to the creation of DIY password-cracking contraptions.

But the stage is not set for hackers alone; on the front lines of defense, Netwrix Solution Engineer Brendan McNulty a will be your stalwart guardian. He'll rise to the challenge, working tirelessly to preempt, detect, and ultimately outsmart these cunning attacks with Netwrix Auditor and Netwrix Password Policy Enforcer.

Watch the session to:

- Explore password spraying techniques, including wordlist creation with tools like Kali's Crunch and Rubeus for Active Directory attacks.
- Discover alternative password sources such as dehashed with practical demonstrations against Active Directory.
- Learn to build your password-cracking rig, create efficient wordlists using "duplicut," and use hashcat for cracking.
- Get an introduction to Elcomsoft Distributed Password Recovery's user-friendly GUI and distributed job capabilities.

Learn how to detect password spraying attacks and establish a robust password policy for Active Directory without burdening users or IT teams.

QWERTY Unleashed: Exploring Next-Gen Hacker Techniques for Passwords

A single misuse of a privileged account can lead to costly business disruptions and unauthorized access to sensitive data. Netwrix Privilege Secure enables you to reduce the risk of data breaches and business disruptions resulting from compromised or misused privileged credentials.

Join us for a 45-minute demo and learn how Netwrix Privilege Secure empowers you to:

- Dramatically reduce risk by eliminating standing privilege
- Enable admins to efficiently accomplish their tasks while promoting accountability
- Quell the anxiety of compliance audits
- Advance toward Zero Trust

Netwrix Privilege Secure Demo: Minimize the Risk from Privileged Activity

Every password is a corporate asset (or risk center) that needs to be managed as such. Between accounts on non-integrated internal systems, cloud accounts, vendor sites, customer sites, banking apps and SaaS, users still have a lot of passwords and integration seems like a constant game of catch up. 

Because different departments are constantly implementing new services and applications.

Watch this session to explore the risks of 3rd party passwords and how to secure and efficiently control business assets:

- Common risks of password re-use and leaked passwords
- The value of auditing and monitoring
- The critical role of password policy

Better Password Hygiene in Active Directory

Password Management

Cyber Security

Cyber Defence

Cyber Attacks

Data Protection

Data Security

IT Security

Information Security

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Better Password Hygiene in Active Directory

Presented by

About this talk

More from this channel