METODOLOGÍA TÉCNICA DE REVISIÓN DE DIRECTORIO ACTIVO
Fecha
2019-09-05
Autores
Título de la revista
ISSN de la revista
Título del volumen
Editor
Jaén: Universidad de Jaén
Resumen
[ES]Creación de un documento y un plan de pruebas adaptado para el análisis de una de las
infraestructuras más importante para una organización desde el punto de vista de la
seguridad de la información. En este sentido, se pretende revisar arquitectura,
hardening de los servidores que componen la infraestructura (Domain Controllers),
objetos del Active Directory, revisión de GPOs, seguridad interna de las configuraciones
utilizadas y la auditoria de eventos y/o logs que debe tenerse en cuenta. Se pretende
también indicar que herramientas hay que utilizar y ejemplos técnicos detallados al
igual que medidas mitigantes.
[EN]The project consists of the creation of a document and a test plan for the evaluation of Active Directory from the cybersecurity approach. The main areas of the methodology are architecture in use, hardening of member and Domain Controllers systems under domain, Active Directory objects, GPOs review, internal configurations and event logging. In this sense, a set of security tools are also recommended in order to address an effective assessment over Active Directory infrastructure. In addition, a security measures are included with the goal of mitigate the potential issues.
[EN]The project consists of the creation of a document and a test plan for the evaluation of Active Directory from the cybersecurity approach. The main areas of the methodology are architecture in use, hardening of member and Domain Controllers systems under domain, Active Directory objects, GPOs review, internal configurations and event logging. In this sense, a set of security tools are also recommended in order to address an effective assessment over Active Directory infrastructure. In addition, a security measures are included with the goal of mitigate the potential issues.