Assessing Your Active Directory: Group Related Risks

10/10/2024 12:00:00 PM [(UTC-05:00) Eastern Time (US & Canada)] - Can't make the live event? Register anyway to receive a link to the recording.

Show/Hide All Time Zones

All Time Zones


Dateline Standard Time-(UTC-12:00) International Date Line West	10/10/2024 4:00:00 AM
UTC-11-(UTC-11:00) Coordinated Universal Time-11	10/10/2024 5:00:00 AM
Aleutian Standard Time-(UTC-10:00) Aleutian Islands	10/10/2024 7:00:00 AM
Hawaiian Standard Time-(UTC-10:00) Hawaii	10/10/2024 6:00:00 AM
Marquesas Standard Time-(UTC-09:30) Marquesas Islands	10/10/2024 6:30:00 AM
Alaskan Standard Time-(UTC-09:00) Alaska	10/10/2024 8:00:00 AM
UTC-09-(UTC-09:00) Coordinated Universal Time-09	10/10/2024 7:00:00 AM
Pacific Standard Time (Mexico)-(UTC-08:00) Baja California	10/10/2024 9:00:00 AM
UTC-08-(UTC-08:00) Coordinated Universal Time-08	10/10/2024 8:00:00 AM
Pacific Standard Time-(UTC-08:00) Pacific Time (US & Canada)	10/10/2024 9:00:00 AM
US Mountain Standard Time-(UTC-07:00) Arizona	10/10/2024 9:00:00 AM
Mountain Standard Time (Mexico)-(UTC-07:00) La Paz, Mazatlan	10/10/2024 9:00:00 AM
Mountain Standard Time-(UTC-07:00) Mountain Time (US & Canada)	10/10/2024 10:00:00 AM
Yukon Standard Time-(UTC-07:00) Yukon	10/10/2024 9:00:00 AM
Central America Standard Time-(UTC-06:00) Central America	10/10/2024 10:00:00 AM
Central Standard Time-(UTC-06:00) Central Time (US & Canada)	10/10/2024 11:00:00 AM
Easter Island Standard Time-(UTC-06:00) Easter Island	10/10/2024 11:00:00 AM
Central Standard Time (Mexico)-(UTC-06:00) Guadalajara, Mexico City, Monterrey	10/10/2024 10:00:00 AM
Canada Central Standard Time-(UTC-06:00) Saskatchewan	10/10/2024 10:00:00 AM
SA Pacific Standard Time-(UTC-05:00) Bogota, Lima, Quito, Rio Branco	10/10/2024 11:00:00 AM
Eastern Standard Time (Mexico)-(UTC-05:00) Chetumal	10/10/2024 11:00:00 AM
Eastern Standard Time-(UTC-05:00) Eastern Time (US & Canada)	10/10/2024 12:00:00 PM
Haiti Standard Time-(UTC-05:00) Haiti	10/10/2024 12:00:00 PM
Cuba Standard Time-(UTC-05:00) Havana	10/10/2024 12:00:00 PM
US Eastern Standard Time-(UTC-05:00) Indiana (East)	10/10/2024 12:00:00 PM
Turks And Caicos Standard Time-(UTC-05:00) Turks and Caicos	10/10/2024 12:00:00 PM
Paraguay Standard Time-(UTC-04:00) Asuncion	10/10/2024 1:00:00 PM
Atlantic Standard Time-(UTC-04:00) Atlantic Time (Canada)	10/10/2024 1:00:00 PM
Venezuela Standard Time-(UTC-04:00) Caracas	10/10/2024 12:00:00 PM
Central Brazilian Standard Time-(UTC-04:00) Cuiaba	10/10/2024 12:00:00 PM
SA Western Standard Time-(UTC-04:00) Georgetown, La Paz, Manaus, San Juan	10/10/2024 12:00:00 PM
Pacific SA Standard Time-(UTC-04:00) Santiago	10/10/2024 1:00:00 PM
Newfoundland Standard Time-(UTC-03:30) Newfoundland	10/10/2024 1:30:00 PM
Tocantins Standard Time-(UTC-03:00) Araguaina	10/10/2024 1:00:00 PM
E. South America Standard Time-(UTC-03:00) Brasilia	10/10/2024 1:00:00 PM
SA Eastern Standard Time-(UTC-03:00) Cayenne, Fortaleza	10/10/2024 1:00:00 PM
Argentina Standard Time-(UTC-03:00) City of Buenos Aires	10/10/2024 1:00:00 PM
Montevideo Standard Time-(UTC-03:00) Montevideo	10/10/2024 1:00:00 PM
Magallanes Standard Time-(UTC-03:00) Punta Arenas	10/10/2024 1:00:00 PM
Saint Pierre Standard Time-(UTC-03:00) Saint Pierre and Miquelon	10/10/2024 2:00:00 PM
Bahia Standard Time-(UTC-03:00) Salvador	10/10/2024 1:00:00 PM
UTC-02-(UTC-02:00) Coordinated Universal Time-02	10/10/2024 2:00:00 PM
Greenland Standard Time-(UTC-02:00) Greenland	10/10/2024 3:00:00 PM
Mid-Atlantic Standard Time-(UTC-02:00) Mid-Atlantic - Old	10/10/2024 2:00:00 PM
Azores Standard Time-(UTC-01:00) Azores	10/10/2024 4:00:00 PM
Cape Verde Standard Time-(UTC-01:00) Cabo Verde Is.	10/10/2024 3:00:00 PM
UTC-(UTC) Coordinated Universal Time	10/10/2024 4:00:00 PM
GMT Standard Time-(UTC+00:00) Dublin, Edinburgh, Lisbon, London	10/10/2024 5:00:00 PM
Greenwich Standard Time-(UTC+00:00) Monrovia, Reykjavik	10/10/2024 4:00:00 PM
Sao Tome Standard Time-(UTC+00:00) Sao Tome	10/10/2024 4:00:00 PM
Morocco Standard Time-(UTC+01:00) Casablanca	10/10/2024 5:00:00 PM
W. Europe Standard Time-(UTC+01:00) Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna	10/10/2024 6:00:00 PM
Central Europe Standard Time-(UTC+01:00) Belgrade, Bratislava, Budapest, Ljubljana, Prague	10/10/2024 6:00:00 PM
Romance Standard Time-(UTC+01:00) Brussels, Copenhagen, Madrid, Paris	10/10/2024 6:00:00 PM
Central European Standard Time-(UTC+01:00) Sarajevo, Skopje, Warsaw, Zagreb	10/10/2024 6:00:00 PM
W. Central Africa Standard Time-(UTC+01:00) West Central Africa	10/10/2024 5:00:00 PM
GTB Standard Time-(UTC+02:00) Athens, Bucharest	10/10/2024 7:00:00 PM
Middle East Standard Time-(UTC+02:00) Beirut	10/10/2024 7:00:00 PM
Egypt Standard Time-(UTC+02:00) Cairo	10/10/2024 7:00:00 PM
E. Europe Standard Time-(UTC+02:00) Chisinau	10/10/2024 7:00:00 PM
West Bank Standard Time-(UTC+02:00) Gaza, Hebron	10/10/2024 7:00:00 PM
South Africa Standard Time-(UTC+02:00) Harare, Pretoria	10/10/2024 6:00:00 PM
FLE Standard Time-(UTC+02:00) Helsinki, Kyiv, Riga, Sofia, Tallinn, Vilnius	10/10/2024 7:00:00 PM
Israel Standard Time-(UTC+02:00) Jerusalem	10/10/2024 7:00:00 PM
South Sudan Standard Time-(UTC+02:00) Juba	10/10/2024 6:00:00 PM
Kaliningrad Standard Time-(UTC+02:00) Kaliningrad	10/10/2024 6:00:00 PM
Sudan Standard Time-(UTC+02:00) Khartoum	10/10/2024 6:00:00 PM
Libya Standard Time-(UTC+02:00) Tripoli	10/10/2024 6:00:00 PM
Namibia Standard Time-(UTC+02:00) Windhoek	10/10/2024 6:00:00 PM
Jordan Standard Time-(UTC+03:00) Amman	10/10/2024 7:00:00 PM
Arabic Standard Time-(UTC+03:00) Baghdad	10/10/2024 7:00:00 PM
Syria Standard Time-(UTC+03:00) Damascus	10/10/2024 7:00:00 PM
Turkey Standard Time-(UTC+03:00) Istanbul	10/10/2024 7:00:00 PM
Arab Standard Time-(UTC+03:00) Kuwait, Riyadh	10/10/2024 7:00:00 PM
Belarus Standard Time-(UTC+03:00) Minsk	10/10/2024 7:00:00 PM
Russian Standard Time-(UTC+03:00) Moscow, St. Petersburg	10/10/2024 7:00:00 PM
E. Africa Standard Time-(UTC+03:00) Nairobi	10/10/2024 7:00:00 PM
Volgograd Standard Time-(UTC+03:00) Volgograd	10/10/2024 7:00:00 PM
Iran Standard Time-(UTC+03:30) Tehran	10/10/2024 7:30:00 PM
Arabian Standard Time-(UTC+04:00) Abu Dhabi, Muscat	10/10/2024 8:00:00 PM
Astrakhan Standard Time-(UTC+04:00) Astrakhan, Ulyanovsk	10/10/2024 8:00:00 PM
Azerbaijan Standard Time-(UTC+04:00) Baku	10/10/2024 8:00:00 PM
Russia Time Zone 3-(UTC+04:00) Izhevsk, Samara	10/10/2024 8:00:00 PM
Mauritius Standard Time-(UTC+04:00) Port Louis	10/10/2024 8:00:00 PM
Saratov Standard Time-(UTC+04:00) Saratov	10/10/2024 8:00:00 PM
Georgian Standard Time-(UTC+04:00) Tbilisi	10/10/2024 8:00:00 PM
Caucasus Standard Time-(UTC+04:00) Yerevan	10/10/2024 8:00:00 PM
Afghanistan Standard Time-(UTC+04:30) Kabul	10/10/2024 8:30:00 PM
West Asia Standard Time-(UTC+05:00) Ashgabat, Tashkent	10/10/2024 9:00:00 PM
Qyzylorda Standard Time-(UTC+05:00) Astana	10/10/2024 9:00:00 PM
Ekaterinburg Standard Time-(UTC+05:00) Ekaterinburg	10/10/2024 9:00:00 PM
Pakistan Standard Time-(UTC+05:00) Islamabad, Karachi	10/10/2024 9:00:00 PM
India Standard Time-(UTC+05:30) Chennai, Kolkata, Mumbai, New Delhi	10/10/2024 9:30:00 PM
Sri Lanka Standard Time-(UTC+05:30) Sri Jayawardenepura	10/10/2024 9:30:00 PM
Nepal Standard Time-(UTC+05:45) Kathmandu	10/10/2024 9:45:00 PM
Central Asia Standard Time-(UTC+06:00) Bishkek	10/10/2024 10:00:00 PM
Bangladesh Standard Time-(UTC+06:00) Dhaka	10/10/2024 10:00:00 PM
Omsk Standard Time-(UTC+06:00) Omsk	10/10/2024 10:00:00 PM
Myanmar Standard Time-(UTC+06:30) Yangon (Rangoon)	10/10/2024 10:30:00 PM
SE Asia Standard Time-(UTC+07:00) Bangkok, Hanoi, Jakarta	10/10/2024 11:00:00 PM
Altai Standard Time-(UTC+07:00) Barnaul, Gorno-Altaysk	10/10/2024 11:00:00 PM
W. Mongolia Standard Time-(UTC+07:00) Hovd	10/10/2024 11:00:00 PM
North Asia Standard Time-(UTC+07:00) Krasnoyarsk	10/10/2024 11:00:00 PM
N. Central Asia Standard Time-(UTC+07:00) Novosibirsk	10/10/2024 11:00:00 PM
Tomsk Standard Time-(UTC+07:00) Tomsk	10/10/2024 11:00:00 PM
China Standard Time-(UTC+08:00) Beijing, Chongqing, Hong Kong, Urumqi	10/11/2024 12:00:00 AM
North Asia East Standard Time-(UTC+08:00) Irkutsk	10/11/2024 12:00:00 AM
Singapore Standard Time-(UTC+08:00) Kuala Lumpur, Singapore	10/11/2024 12:00:00 AM
W. Australia Standard Time-(UTC+08:00) Perth	10/11/2024 12:00:00 AM
Taipei Standard Time-(UTC+08:00) Taipei	10/11/2024 12:00:00 AM
Ulaanbaatar Standard Time-(UTC+08:00) Ulaanbaatar	10/11/2024 12:00:00 AM
Aus Central W. Standard Time-(UTC+08:45) Eucla	10/11/2024 12:45:00 AM
Transbaikal Standard Time-(UTC+09:00) Chita	10/11/2024 1:00:00 AM
Tokyo Standard Time-(UTC+09:00) Osaka, Sapporo, Tokyo	10/11/2024 1:00:00 AM
North Korea Standard Time-(UTC+09:00) Pyongyang	10/11/2024 1:00:00 AM
Korea Standard Time-(UTC+09:00) Seoul	10/11/2024 1:00:00 AM
Yakutsk Standard Time-(UTC+09:00) Yakutsk	10/11/2024 1:00:00 AM
Cen. Australia Standard Time-(UTC+09:30) Adelaide	10/11/2024 2:30:00 AM
AUS Central Standard Time-(UTC+09:30) Darwin	10/11/2024 1:30:00 AM
E. Australia Standard Time-(UTC+10:00) Brisbane	10/11/2024 2:00:00 AM
AUS Eastern Standard Time-(UTC+10:00) Canberra, Melbourne, Sydney	10/11/2024 3:00:00 AM
West Pacific Standard Time-(UTC+10:00) Guam, Port Moresby	10/11/2024 2:00:00 AM
Tasmania Standard Time-(UTC+10:00) Hobart	10/11/2024 3:00:00 AM
Vladivostok Standard Time-(UTC+10:00) Vladivostok	10/11/2024 2:00:00 AM
Lord Howe Standard Time-(UTC+10:30) Lord Howe Island	10/11/2024 3:00:00 AM
Bougainville Standard Time-(UTC+11:00) Bougainville Island	10/11/2024 3:00:00 AM
Russia Time Zone 10-(UTC+11:00) Chokurdakh	10/11/2024 3:00:00 AM
Magadan Standard Time-(UTC+11:00) Magadan	10/11/2024 3:00:00 AM
Norfolk Standard Time-(UTC+11:00) Norfolk Island	10/11/2024 4:00:00 AM
Sakhalin Standard Time-(UTC+11:00) Sakhalin	10/11/2024 3:00:00 AM
Central Pacific Standard Time-(UTC+11:00) Solomon Is., New Caledonia	10/11/2024 3:00:00 AM
Russia Time Zone 11-(UTC+12:00) Anadyr, Petropavlovsk-Kamchatsky	10/11/2024 4:00:00 AM
New Zealand Standard Time-(UTC+12:00) Auckland, Wellington	10/11/2024 5:00:00 AM
UTC+12-(UTC+12:00) Coordinated Universal Time+12	10/11/2024 4:00:00 AM
Fiji Standard Time-(UTC+12:00) Fiji	10/11/2024 4:00:00 AM
Kamchatka Standard Time-(UTC+12:00) Petropavlovsk-Kamchatsky - Old	10/11/2024 5:00:00 AM
Chatham Islands Standard Time-(UTC+12:45) Chatham Islands	10/11/2024 5:45:00 AM
UTC+13-(UTC+13:00) Coordinated Universal Time+13	10/11/2024 5:00:00 AM
Tonga Standard Time-(UTC+13:00) Nuku'alofa	10/11/2024 5:00:00 AM
Samoa Standard Time-(UTC+13:00) Samoa	10/11/2024 5:00:00 AM
Line Islands Standard Time-(UTC+14:00) Kiritimati Island	10/11/2024 6:00:00 AM

Webinar Registration

Groups are the fundamental way we manage access both inside Active Directory to control privileged access and readability of directory information as well as outside AD, throughout the rest of your network, to manage both end-user access to information and applications, and privileged access to systems relying on AD.

But groups in your on-prem AD have ramifications even up in the cloud if you are like most organizations and synchronize groups up to Entra via Microsoft Entra Connect Sync (formerly known as Azure AD Connect). A given group created on your AD domain controller might grant a user access to an on-prem file server, VPN gateway, access to a SQL database, Dynamics CRM in the cloud, a SharePoint site in Office 365 and virtual machines and storage accounts in Azure.

And of course, with federation and Open ID Connect that same group could grant members access to other non-Microsoft cloud apps like Workday, ServiceNow and the list goes on and on.

So, groups deserve close scrutiny and in this real training for free session I will help you find group related risks before auditors, red teams or regulators do.

Groups are a simple concept. Put related users in a group and then give that group access to a resource. When a new user needs the same kind of access put them in the group. When a user’s role changes, remove them from the appropriate groups. But groups quickly get out of hand.

The biggest issues that contribute to group-based risks include:

There’s no direct way to see all the entitlements a group has across your hybrid on-prem and multi-cloud environment
You frequently find multiple groups with nearly the same name and many of the same users – but not quite
Ownership of groups and criteria for membership is frequently unclear and therefore groups are allowed to grow stale; members are added but never removed
Group-nesting is powerful and has a legitimate use, but it can quickly get out of control leading to shocking and unintended results

Groups were always a copious source of findings in my AD security practice where I audited a range of AD implementations and taught regulators like the FDIC and the four large accounting firms how to assess Active Directory. In this session I’ll share what I learned and help you clean up your existing groups in implementing conventions and controls to keep groups secure going forward.

Netwrix is my sponsor for this real training for free session and with their Netwrix Auditor solution they are the perfect fit. Jennifer Taufan will show you how to:

Report on effective group membership in Active Directory and Entra ID
Understand where groups are granting access to your data sources such as file servers and SharePoint
Monitor and alert on group membership changes

Please join us for this real training for free session.

First Name:	Required
Last Name:	Required
Work Email:	Required Invalid email address
Phone:	Required
Organization:	Required
Country:	Required
City:	Required
State:	Required
Zip/Postal Code:	Required
Company Size:	RequiredRequired
Job Title:	RequiredRequired
Industry:	RequiredRequired
	Your information will be shared with the sponsor. By clicking "Submit", you're agreeing to our Privacy Policy and consenting to be contacted by us and the sponsor. Tweet

Upcoming Webinars

Assessing Your Active Directory: Group Related Risks

Additional Resources

User name:
Password:
	/ Forgot?
	Register

September 2024 Patch Tuesday	"Patch Tuesday - Four Zero Days " - sponsored by Supercharger

Follow @randyfsmith

About | Newsletter | Contact

Ultimate IT Security is a division of Monterey Technology Group, Inc. ©2006-2024 Monterey Technology Group, Inc. All rights reserved.
Disclaimer: We do our best to provide quality information and expert commentary but use all information at your own risk. For complaints, please contact abuse@ultimatewindowssecurity.com.