Most common Active Directory misconfigurations can lead to cyber attacks. Administrator accounts can be allowed for delegation, AES encryption should be forced on service accounts, and the print spooler should be disabled on domain controllers. Users should not be able to create machine accounts, and unchanged GPOs should be reprocessed on domain controllers. Password policies and least privilege should be implemented for service accounts, and the KRBTGT account should be protected. #ActiveDirectory #CyberSecurity #CyberSecurityNews

https://cybersecuritynews.com/most-common-active-directory-misconfigurations/