<div>
<div class="content wysiwyg-content">
are there any free security tools that will do an audit on the security of your AD and domain controllers, i.e. configurations that don't align with best practices? I cant seem to find much, except Nessus (which isn't free) has some .audit files. there are some guides and checklists out there to do a more manual review, but wanted to rule out any automated scanners.
</div>
</div>


are there any free security tools that will do an audit on the security of your AD and domain controllers, i.e. configurations that don't align with best practices? I cant seem to find much, except Nessus (which isn't free) has some .audit files. there are some guides and checklists out there to do a more manual review, but wanted to rule out any automated scanners.

AD security tools

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

The Microsoft Server topic includes all of the legacy versions of the operating system, including the Windows NT 3.1, NT 3.5, NT 4.0 and Windows 2000 and Windows Home Server versions.

Microsoft Server OS

This topic area includes legacy versions of Windows prior to Windows 2000: Windows 3/3.1, Windows 95 and Windows 98, plus any other Windows-related versions including Windows Mobile.