User Profile
DonatoL
Copper Contributor
Joined Dec 05, 2020
User Widgets
Recent Discussions
Identity Security Posture report
Hello we have deployed Defender for Identity in a multi-forest environment. We had a couple of forest that had forest trust with one of the forest monitored by MDI but they never had MDI sensor installed on their domain controller, but the Identity security Posture right now report several report several information regarding domain controller without sensor and unsecure attribute for object in these 2 old forest no more connected or trusted. We thought it depended from data retention by one year later we have this stale information in the report. We have also excluded domains, identities, device and IP from from all detection rules but nothing didn't change. is it possible in some way to modify information in this report? this situation lead us to have a bad Identity security score due to incorrect information on Identity posture report. hope you can help Donato1.6KViews0likes5CommentsRe: Unsecure Kerberos delegation still visible after mitigation
I've the same problem (deleted account in AD still marked in AATP as active) but AD didn't have recycle bin active due to the functional level I cannot raise. May you suggest something to solve this problem? thank you1.5KViews0likes2CommentsIdentity security posture doesn't refresh data
Hello, we are working to remediate security risk highlighted by Cloud App Security Identity Posture, in particular Unsecure Kerberos Delegation and Unsecure Account Attributes. We have remediated more than one week ago user and computer account showed in this report but date continue to be the same. In one case we have removed completely the user account marked as unsecure due to uncontrained kerberos delegation, but the report continue to show this account and not removing the security issue. any suggestion on the resolution of this point? thanks in advance Donato
Recent Blog Articles
No content to show