How must company user computer be that is in active directory

Kanan Ismayilov 1 Reputation point

I am searching about how the end user computer must be, but I can't find most related answers. I need the answer. For example I am working in a company, and I have the computer that is given company that is in domain. What will be in this computer that we can say it is secured enough. That is the best secured computer in company. Which procedures should be? Thanks in advance.

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
4,008 questions
No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Thameur-BOURBITA 16,136 Reputation points


    You can start by reading the links below talking about desktop hardening :


    Please don't forget to mark helpful reply as answer

  2. Limitless Technology 17,821 Reputation points

    Hello there,

    It depends upon the security policies fixed by your domain.

    After a machine joind to domain, there will be multiple registry changes.

    For an example, if there are some domain-wide computer Group Policies are defined, the newly joined machine will apply these policies and corresponding registry key values will be changed.

    At a high level, when you join a computer in AD, a computer account is created in the AD database that is used to authenticate the computer to the domain controller every time it boots up. Passwords for computer accounts are renewed automatically every 30 days by default. Authentication is done by Kerberos which uses port 88 TCP (and UDP older versions). Auditing and controlling access to resources can also be done by using computer accounts in AD.

    Similar discussion here

    Hope this resolves your Query !!

    --If the reply is helpful, please Upvote and Accept it as an answer--