ON-DEMAND Webinars

Online Course

Active Directory Recommended Practices

Get Free Webinar Series
{{ firstError }}
We care about the security of your data. Please see our Privacy Policy

Active Directory and Entra ID are critical to managing access across your organisation, but complex permissions, legacy configurations, and lingering accounts can create serious security gaps.

In this two-part series, Sander Berkouwer and Darryl Baker share practical guidance to help you quickly assess and strengthen your environment. You’ll learn how to secure permissions, prevent unauthorised changes, detect persistence techniques, and clean up stale objects so both new and seasoned admins can manage AD and Entra ID more effectively and securely.

Register for the webinar
Avoiding and detecting unintended permission changes
{{ firstError }}
We care about the security of your data. Please see our Privacy Policy
Register for the webinar
Detecting and remediating unwanted persistence
{{ firstError }}
We care about the security of your data. Please see our Privacy Policy

Avoiding and detecting unintended permission changes

Active Directory has been the foundation of access management for over 25 years, used by most organisations to control access to resources both on-premises and in the cloud. Over time, IT pros have turned to forums, videos, and online communities to troubleshoot AD issues only to discover that a forgotten configuration from years ago, or a well-meaning shortcut like copying user accounts, can lead to major problems today.

With constant security updates from Microsoft and increasingly complex permission structures, many admins new and experienced alike struggle to understand who has access to what and why. This session helps you cut through that complexity and take control of your AD environment.

In this session, Sander Berkouwer and Netwrix Solution Architect Darryl Baker show how PingCastle, Access Analyzer, and Threat Prevention help admins:

  • Quickly and securely assign permissions across the organisation
  • Equip new admins with clear insights into AD and Entra ID permissions and delegations
  • Detect and block unauthorised changes to prevent new security issues

Webinar Presenters

 Darryl Baker avatar
Darryl Baker
Solutions Architect

Cybersecurity Consultant and Instructor with over 20 years of experience in information security, systems architecture, and military leadership. I specialise in securing enterprise environments including Active Directory, Azure, and identity management platforms by identifying vulnerabilities, simulating real-world attack scenarios, and implementing customised remediation strategies.

My focus areas include vulnerability assessments, identity threat detection and response, and adversarial attack simulations. I have helped organisations significantly reduce their attack surface and achieve compliance with standards such as NIST and ISO 27001, ultimately strengthening their overall security posture.

Sander Berkouwer avatar
Sander Berkouwer
Microsoft MVP and MCT

Technological developments around Active Directory, Entra, and identity management are evolving at an increasingly rapid pace. Keeping up with these changes is a minor challenge compared to my real goal: ensuring that people can actually use these technologies in their everyday lives. I believe IT should not be an obstacle, but rather a gateway to endless possibilities.

My multiple recognitions as a Microsoft Most Valuable Professional (MVP), Veeam Vanguard, and VMware vExpert, along with my extensive certifications, help me along the way. Thanks to my direct connection with product teams, my knowledge is always up to date, and I can provide swift feedback and support.

Detecting and remediating unwanted persistence

We all know that when Active Directory goes down, it’s game over for many organisations. But what if you can no longer trust the data within Active Directory or Entra ID? Stale accounts, lingering privileged access, and undetected persistence techniques can quietly undermine your security.

In this session, Sander Berkouwer and Darryl Baker outline best practices for effective offboarding and demonstrate how to move beyond reactive clean-up toward proactive detection, remediation, and recovery. Using Netwrix tools like Access Analyzer, Threat Prevention, and Recover, you'll discover how to identify risks early and maintain a secure, well-managed environment.

Watch this session to learn how to:

  • Implement a clear object lifecycle across users, admins, and applications
  • Detect and respond to suspicious or risky activity in real time
  • Roll back unauthorised changes with context-aware remediation
  • Remove privileged access to prevent malicious persistence

Webinar Presenters

 Darryl Baker avatar
Darryl Baker
Solutions Architect

Cybersecurity Consultant and Instructor with over 20 years of experience in information security, systems architecture, and military leadership. I specialise in securing enterprise environments including Active Directory, Azure, and identity management platforms by identifying vulnerabilities, simulating real-world attack scenarios, and implementing customised remediation strategies.

My focus areas include vulnerability assessments, identity threat detection and response, and adversarial attack simulations. I have helped organisations significantly reduce their attack surface and achieve compliance with standards such as NIST and ISO 27001, ultimately strengthening their overall security posture.

Sander Berkouwer avatar
Sander Berkouwer
Microsoft MVP and MCT

Technological developments around Active Directory, Entra, and Identity Management are evolving at an increasingly rapid pace. Keeping up with these changes is a minor challenge compared to my real goal: ensuring that people can actually use these technologies in their everyday lives. I believe IT should not be an obstacle, but rather a gateway to endless possibilities. ​

​My multiple recognitions as a Microsoft Most Valuable Professional (MVP), Veeam Vanguard, and VMware vExpert, along with my extensive certifications, help me along the way. Thanks to my direct connection with product teams, my knowledge is always up to date, and I can provide swift feedback and support.

Get Free Webinar Series
{{ firstError }}
We care about the security of your data. Please see our Privacy Policy