We are currently running a 2003 R2 forest/domain function level with exchange 2010. We are looking to perform the ADprep for 2008 R2. We will not be changing the function level just yet but we want to run the ADprep to enable some of the newer features.
We are a single forest with one domain and a child domain (company.com and dmz.company.com)
Below are the steps I am planning on running.
1. adprep /forestprep on operations master
2. adprep /domainprep on infrastructure master in company.com and dmz.company.com
1. We are not planning on running and read only DCs so I believe I can skip adprep /rodcprep
2. Im not entirely sure if I need to run adprep /domainprep /gpprep if so when should this be run?
Attackers love to prey on accounts that have privileges.
Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …