Posts

Learning from the field - Understanding and Auditing Active Directory Group Policy - Part 2/2

Image
Hope you got a chance to read my previous blog post on understanding the basics of Active Directory (AD) Group Policy (GPO) .  If you haven't checked that, please do, as the same would serve as a base prerequisite for this current post. This blog post tries to focus on exhaustive methods and ways to identify and extract various information pertaining to group policy and it's settings in an AD environment that could be used for auditing i.e it focuses majorly only on How part of auditing AD GPO to keep it as generic as possible. However, on a practical scenario only some of the details  / testing methods mentioned in this post might be required depending on type of control or the audit flavour. The Which (i.e. which configurations to check) part of auditing differs from standard to standard for which the audit is being carried out and is out of the scope for the current post. If you would like me to write a blog post on auditing for a specific standard, feel fre