{"id":6513,"date":"2021-01-29T08:10:32","date_gmt":"2021-01-29T13:10:32","guid":{"rendered":"http:\/\/allidm.com\/blog\/?p=6513"},"modified":"2021-01-29T08:26:34","modified_gmt":"2021-01-29T13:26:34","slug":"tips-to-harden-active-directory-against-solarwinds-type-attacks","status":"publish","type":"post","link":"https:\/\/allidm.com\/blog\/tips-to-harden-active-directory-against-solarwinds-type-attacks\/","title":{"rendered":"Tips to harden Active Directory against SolarWinds-type attacks"},"content":{"rendered":"\n

The SolarWinds\/Solorigate attacks used some concerning methodologies. One of them has been what is called\u00a0the Golden SAML<\/a>\u00a0attack process. Security Assertion Markup Language (SAML<\/a>) enables the exchange of authentication and authorization information between trusted parties. The Golden SAML technique allows attackers to generate their own SAML response to gain access or control. To do so, they must first gain privileged access to a network to access the certificates used to sign SAML objects.\u00a0<\/p>\n\n\n\n

You have several means with Microsoft\u2019s Active Directory (AD) to identify this and other techniques used in the SolarWinds attack and prevent them from happening.<\/p>\n\n\n\n

Read more at CSO on line Tips to harden Active Directory against SolarWinds-type attacks<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

The SolarWinds\/Solorigate attacks used some concerning methodologies. One of them has been what is called\u00a0the Golden SAML\u00a0attack process. Security Assertion Markup Language (SAML) enables the exchange of authentication and authorization information between trusted parties. The Golden SAML technique allows attackers to generate their own SAML response to gain access or control. To do so, they […]<\/p>\n","protected":false},"author":1,"featured_media":6019,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"nf_dc_page":"","_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[109,1180],"tags":[492],"class_list":["post-6513","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-directory","category-sso-article-2","tag-saml"],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/allidm.com\/blog\/wp-content\/uploads\/2018\/02\/Identity_and_Access_Management_Post.png?fit=141%2C124&ssl=1","jetpack_shortlink":"https:\/\/wp.me\/p25vfy-1H3","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/posts\/6513","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/comments?post=6513"}],"version-history":[{"count":2,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/posts\/6513\/revisions"}],"predecessor-version":[{"id":6515,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/posts\/6513\/revisions\/6515"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/media\/6019"}],"wp:attachment":[{"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/media?parent=6513"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/categories?post=6513"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/tags?post=6513"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}