Active Directory & Microsoft Entra ID Security Assessment
More security for your Active Directory – detect and repair vulnerabilities
The Active Directory is the central hub for managing network resources, user objects and permissions. Microsoft Entra ID serves as the central cloud-based identity and access management solution for various Microsoft services, such as Microsoft 365, Dynamics or Microsoft Azure. In both systems, security flaws and potential vulnerabilities within the configuration can have significant impacts on network security and hybrid AD environments, increasing susceptibility to cyberattacks.
In order to identify these security gaps and risks, conova uses security assessment tools for Active Directory and Microsoft Entra ID Security Assessment. These tools thoroughly analyze company settings for security issues and go beyond standard evaluations to generate detailed and comprehensive reports including Maturity Level and MITRE ATT&CK representations. The individual reports are in XML and HTML formats and are presented in a clear and organized manner.
A critical step here is the personalized consultation and expert analysis. During a personalized consultation, the conova specialists analyze the results and then discuss them with you in great detail. You will receive targeted optimization suggestions and recommendations, specifying which issues or settings must be corrected urgently and where caution is advised due to potential interdependencies between IT services that could have negative impacts. This approach ensures a secure AD and Entra ID configuration within your company.
The key strength of the security assessment lies in its ability to discover configurations that are often forgotten and would be difficult, if not impossible, to identify without the tool. This is particularly true for settings that were implemented a long time ago.
Advantages
- Comprehensive security check of the Active Directory and Microsoft Entra ID configuration
- Identification of possible risks and vulnerabilities
- Detailed reports in XML and HTML format
- Findings-prioritization according to urgency
- Consultation with optimization suggestions
- Optional: detailed workshop to evaluate findings
- Optional: automatic monthly reporting
The “Active Directory (AD)” directory service, introduced with the Windows 2000 server has been in use for many years now. During this time, algorithms have changed and many companies have accumulated old burdens and issues related to computer- and user accounts, domain controllers and unused groups. Microsoft Entra ID (formerly known as Azure AD) is constantly evolving as well.
In order to avoid creating entry points and security vulnerabilities for attackers, your infrastructure’s Azure Directory and Entra ID must be thoroughly reviewed at least once a month. Unused user and computer accounts should immediately be disabled or deleted. A regular security check provides results for a continuous improvement process. This is particularly important because we are constantly facing new vulnerabilities and risks (CVEs = Common Vulnerabilities and Exposures) and, of course, cyber criminals. The threats are steadily increasing.
| Security Assessment | One-off setup costs | Price per month |
| Active Directory – one-time consulting services | upon request *) | |
| Microsoft Entra ID – one-time consulting services | upon request *) |
| Security Assessment – extensions | ||
| Active Directory – monthly Reporting | upon request | upon request |
*) included in the price: Creation and reporting max. 5 hours. Configuration adjustments are NOT included.
You require more detailed information or are interested in a non-binding consultation? Then please send us a short inquiry to sales@conova.com or simply fill out our contact form.
Regular Security Checks
Tools such as “PingCastle” make it possible to conduct necessary security checks independently at regular intervals to review local Active Directory settings.
The rules used in PingCastle are based on ANSSI (Agence Nationale de la Sécurité des Systèmes d’Information) and also the Miter Att&ck frameworks. The use of the integrated maturity model, which is based on CMMI (Capability Maturity Model Integration) categories, is recommended in order to continuously improve your own AD security.
After running the PingCastle Health Check, you receive various standard reports, such as the “Risk Model” overview, divided into four areas, or a list of findings prioritized by the urgency with which the vulnerabilities should be addressed
Additional information and reports regarding discovered vulnerabilities
With our advanced evaluation capabilities, we provide you with the significant advantage and added value of detailed reports regarding the identification of vulnerabilities. The focus is clear: supporting you in establishing a continuous improvement process, achieving baseline security hygiene, and, if necessary, offering you monthly reports.
THIS MEANS:
- As a first step, we show you how to optimally use the respective tool to obtain first assessments and evaluate them appropriately. We help you clarify which configuration adjustments must be implemented immediately and which settings can be postponed. We provide advisory support during implementation in order to avoid errors when carrying out changes and to ensure that certain services that we as your IT service provider may require, are not inadvertently deactivated.
- The second step is checking whether the initial adjustments have led to an improvement in basic security. Finally, our experts will discuss further ‘to-dos’ with you.
View of maturity
MITRE ATT&CK representation
The detailed reports from the Active Directory or Microsoft Entra ID Security Assessment not only include information regarding security vulnerabilities, but also additional links with explanations about why the current configuration may present a potential or urgent problem.
Frequently asked questions about active directory and microsoft entra id
What happens during a security assessment?
During an assessment, the IT infrastructure used within the company is comprehensively analyzed for vulnerabilities in order to determine how well it is protected against risks. The result is a report containing recommendations to ensure the necessary level of security within the organization.
Why is an Active Directory or Entra ID Security Assessment so important?
Security flaws and potential vulnerabilities within the Active Directory and Microsoft Entra ID configurations can compromise network security, increasing the risk of cyberattacks. Regularly reviewing the Active Directory and Microsoft Entra ID configuration using the conova Security Assessment Tool is therefore highly recommended.
How do I review an Active Directory?
Reviewing an Active Directory (AD) involves many steps and aspects in order to ensure its functionality and also provides the necessary services. These include checking network connections and DNS settings, assessing domain controller health, verifying user management and object management, checking Group Policies (GPOs) and password policies, analyzing event logs for irregularities, generating detailed reports and setting up regular assessments to maintain security and operational integrity. conova’s security assessment tools can streamline and enhance all these processes.
What is an Active Directory Health Check?
An Active Directory (AD) Health Check is a comprehensive review of the status and functionality of an Active Directory environment. The goal is to identify issues that could potentially affect the security, performance or availability of the AD and to proactively implement measures of optimization.
How do I review Microsoft Entra ID?
Reviewing Microsoft Entra ID (formerly known as Azure Active Directory) ensures that identity and access management within your cloud environment operates optimally. Key aspects include performing a service check, conducting user and group reviews, monitoring security and sign-in activities, examining access policies, roles and administrator permissions, reviewing applications and API permissions, assessing hybrid integrations as well as generating reports and recommendations.
What is a Microsoft Entra ID Health Check?
A Microsoft Entra ID Health Check is a comprehensive review of the configuration, performance, security and integrity of Microsoft Entra ID (formerly known as Azure Active Directory). The goal here is to assess the state of identity and access management services, identify security flaws, ensure functionality and also verify compliance with best practice.