This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(169.60000000000002, 53%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK%3C/text%3E%3C/svg%3E)
Hi,
I want to know how to implement the Enhanced Security Admin Environment (ESAE) architecture (often referred to as red forest, admin forest, or hardened forest). I have found the below Ms article for this. As mentioned it is on retired state, but still we have requirement to implement it in on-prem from our client side.
https://learn.microsoft.com/en-us/security/privileged-access-workstations/esae-retirement
But unfortunately, I have not found any article or blog for the configuration and implementation of this red forest aritecture. I am totally new on it, but I haven't idea how configure and test this architecture.
Are there any kind of GPO need to configure and implement in this red forest model?
Can you please help me as soon as possible for the configuration and implementation of red forest model.
I am really grateful to you for this.
Thanks!
Khushi
Anyone can you please help me on this?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 80%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETB%3C/text%3E%3C/svg%3E)
Hi, @Khushi •
Sorry for the delay.
Regarding the red forest I think the link below will help you to get more details about the best pracitise :
Planning a bastion environment
Are there any kind of GPO need to configure and implement in this red forest model?
You will need GPO to implement tiering model based on user right assignement settings and to enable audit.
Please don't forget to accept helpful answer and close this thread
Hi @Khushi •
just checking if my answer is helpful.
if you have another subject please close this thread by accepting helpful answer and create new one.
Please don’t forget to accept helpful answer and close this thread
