Solved

AD BPA

Posted on 2011-03-08
2
305 Views
Last Modified: 2013-11-05
Has anyone ran the active directory best practices analyzer tool? Is it useful? What kind of issues does it look for? Does it give a RISK per non complaince with best practice? Does it flag up major issues or pretty trivial ones? Are there any alternative tools to this looking at AD benchmarks or best practice configuration?
0
Comment
Question by:pma111
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 57

Assisted Solution

by:Mike Kline
Mike Kline earned 60 total points
ID: 35069788
I've run it a few times but we also have the Microsoft ADRAP tool (not publicily available).  BPA is a good tool, it doesn't give a risk per se but does alert you to major issues like time and DNS etc.

There is also a DNS BPA

Great list of the various BPA's   http://blogs.technet.com/b/jeff_stokes/archive/2011/02/06/bpas-not-just-for-exchange-anymore.aspx

Thanks

Mike
0
 
LVL 11

Accepted Solution

by:
RickSheikh earned 65 total points
ID: 35071764
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A company’s centralized system that manages user data, security, and distributed resources is often a focus of criminal attention. Active Directory (AD) is no exception. In truth, it’s even more likely to be targeted due to the number of companies …
Recently, Microsoft released a best-practice guide for securing Active Directory. It's a whopping 300+ pages long. Those of us tasked with securing our company’s databases and systems would, ideally, have time to devote to learning the ins and outs…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

695 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question