900 XP

Secure Windows Server user accounts

Intermediate
Administrator
Azure
Windows Server

Protect your Active Directory environment by securing user accounts to least privilege and placing them in the Protected Users group. Learn how to limit authentication scope and remediate potentially insecure accounts.

Learning objectives

After completing this module, you'll be able to:

  • Configure and manage user accounts to limit security threats across an organization
  • Apply Protected Users settings, policies, and authentication silos to protect highly privileged user accounts
  • Describe and configure Windows Defender Credential Guard
  • Configure Group Policy to block the use of NTLM for authentication
Start

Prerequisites

  • Familiarity with managing Active Directory Domain Services security principals
  • Ability to edit Active Directory Group Policy settings
  • Experience performing basic Windows Server administration tasks

This module is part of these learning paths

Module assessment

Assess your understanding of this module. Sign in and answer all questions correctly to earn a pass designation on your profile.

Take the module assessment