dcsimg

Securing AD for Hybrid Cloud Environments

  • Securing AD for Hybrid Cloud Environments-

    Use Forensics

    Step 5: Use forensics to identify paths to breaches.

    IT teams can reveal the most likely paths to any potential data breach by using 360-degree forensics and full-text search to connect events, access activities and security configuration across multiple data sets. These searches can expose tracks to possible breaches, including any activity in AD, GPOs, files and computers by a given user during a given period; any activity containing a given word, such as "finance" or "salary"; security configuration and changes for a given user; and membership information for any given group, including recent changes to membership.

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8

Securing AD for Hybrid Cloud Environments

  • 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8
  • Securing AD for Hybrid Cloud Environments-6

    Use Forensics

    Step 5: Use forensics to identify paths to breaches.

    IT teams can reveal the most likely paths to any potential data breach by using 360-degree forensics and full-text search to connect events, access activities and security configuration across multiple data sets. These searches can expose tracks to possible breaches, including any activity in AD, GPOs, files and computers by a given user during a given period; any activity containing a given word, such as "finance" or "salary"; security configuration and changes for a given user; and membership information for any given group, including recent changes to membership.

Adoption of cloud services has undeniably soared, with Microsoft calling Office 365 its fastest growing commercial product ever, and more than 70 percent of Fortune 500 companies now using at least two different Microsoft cloud services. However, while organizations are actively deploying more cloud applications, they are also keeping on-premises solutions, creating a hybrid environment of both on-premises and cloud-based applications.

To manage employee authentication, identity management and access control policies across hybrid environments, companies often leverage the Azure Active Directory (AD) Connect management tool, which performs a one-way sync from on-premises AD to the online Azure AD. The problem is that on-premises AD does not include the same types of security controls that the cloud-based version does, leaving a big hole in an organization's security program that exposes the business to risk.

In this slideshow, Alvaro Vitta, principal solutions consultant specializing in security at Quest Systems and Information Management, recommends six steps for organizations to strengthen their hybrid directory environment to ensure successful hybrid cloud environment performance.