You're reading from Mastering Active Directory, Third Edition Design, deploy, and protect Active Directory Domain Services for Windows Server 2022

Product type Paperback

Published in Nov 2021

Publisher Packt

ISBN-13 9781801070393

Length 780 pages

Edition 3rd Edition

Languages

PowerShell

Tools

Active Directory Domain Services

Concepts

Design

Author (1):

Dishan Francis

View More author details

Table of Contents (22) Chapters

Preface

1. Active Directory Fundamentals FREE CHAPTER

2. Active Directory Domain Services 2022

3. Designing an Active Directory Infrastructure

4. Active Directory Domain Name System

5. Placing Operations Master Roles

6. Migrating to Active Directory 2022

7. Managing Active Directory Objects

8. Managing Users, Groups, and Devices

9. Designing the OU Structure

10. Managing Group Policies

11. Active Directory Services – Part 01

12. Active Directory Services – Part 02

13. Active Directory Certificate Services

14. Active Directory Federation Services

15. Active Directory Rights Management Services

16. Active Directory Security Best Practices

17. Advanced AD Management with PowerShell

18. Hybrid Identity

19. Active Directory Audit and Monitoring

20. Other Books You May Enjoy

21. Index

What is Microsoft Defender for Identity?

In the previous two editions of this book, this section was allocated to Microsoft Advanced Threat Analytics (ATA). This is an on-prem platform to help us protect our identity infrastructure from advanced targeted attacks by automatically analyzing, learning, and identifying normal and abnormal behavior (from users, devices, and resources). Microsoft also had a cloud version of it called Azure Advanced Threat Protection (Azure ATP). This cloud service has now been renamed Defender for Identity. Microsoft ATA mainstream support ended on January 12, 2021, so going forward, users only can use the cloud-based Defender for Identity service.

When we consider a typical attack kill chain, we can identify four main areas to protect: