1
00:00:01,140 --> 00:00:04,420
Hello, and welcome to Pluralsight! This module is entitled

2
00:00:04,420 --> 00:00:08,140
Secure Hybrid Active Directory Accounts.

3
00:00:08,140 --> 00:00:11,020
Hopefully you're coming into this second lesson from the first

4
00:00:11,020 --> 00:00:14,360
module in which we looked at Windows Server Security and some of

5
00:00:14,360 --> 00:00:18,510
the Microsoft cloud‑based and local products you can use to help

6
00:00:18,510 --> 00:00:20,560
enforce system security,

7
00:00:20,560 --> 00:00:23,450
things like preventing malicious or suspected

8
00:00:23,450 --> 00:00:25,330
malicious code from running, and so on.

9
00:00:25,330 --> 00:00:28,680
In this lesson, we're concerned with account security.

10
00:00:28,680 --> 00:00:33,290
So we'll configure password policies for Active Directory users, we'll

11
00:00:33,290 --> 00:00:38,250
enable password block lists, we'll understand the protected users global

12
00:00:38,250 --> 00:00:42,950
groups, we'll manage account security on RODCs, read‑only domain

13
00:00:42,950 --> 00:00:47,220
controllers, we'll pick up some best practices from Microsoft on

14
00:00:47,220 --> 00:00:48,880
hardening your domain controllers,

15
00:00:48,880 --> 00:00:52,980
that is, your read/write DCs, and then we'll finish with a flourish by

16
00:00:52,980 --> 00:00:58,240
covering authentication policies and their associated silos.

17
00:00:58,240 --> 00:00:59,240
In this course,

18
00:00:59,240 --> 00:01:01,920
Secure On‑premises and Hybrid Infrastructure, we

19
00:01:01,920 --> 00:01:04,100
have six modules. As I mentioned,

20
00:01:04,100 --> 00:01:08,270
the first module was about securing the Windows Server OS. Now we're

21
00:01:08,270 --> 00:01:12,750
actually in module one of two covering account security,

22
00:01:12,750 --> 00:01:13,740
as you can see.

23
00:01:13,740 --> 00:01:16,200
Then, in the fourth lesson, we'll remediate Windows

24
00:01:16,200 --> 00:01:24,000
Server Security issues using Azure. Then we'll do Windows Server networking, and lastly, storage