Intro to Windows
Walkthrough of the Intro to Windows room.
Walkthrough of the Active Directory Basics room.
Task 1: Introduction
Task 2: Physical Active Directory
What database does the AD DS contain?
Answer: NTDS.dit
Where is the NTDS.dit stored?
Answer: %SystemRoot%\NTDS
What type of machine can be a domain controller?
Answer: Windows Server
Task 3: The Forest
What is the term for a hierarchy of domains in a network?
Answer: Tree
What is the term for the rules for object creation?
Answer: Dp,aom Schema
What is the term for containers for groups, computers, users, printers, and other OUs?
Answer: Organizational Units
Task 4: Users + Groups
The users and groups that are inside of an Active Directory are up to you; when you create a domain controller it comes with default groups and two default users: Administrator and guest. It is up to you to create new users and create new groups to add users to.
Image by raphaelsilvafromPixabay
Users Overview –
Users are the core to Active Directory; without users why have Active Directory in the first place? There are four main types of users you’ll find in an Active Directory network; however, there can be more depending on how a company manages the permissions of its users. The four types of users are:
Image by raphaelsilvafromPixabay
Groups Overview –
Groups make it easier to give permissions to users and objects by organizing them into groups with specified permissions. There are two overarching types of Active Directory groups:
Default Security Groups –
There are a lot of default security groups so I won’t be going into too much detail of each past a brief description of the permissions that they offer to the assigned group. Here is a brief outline of the security groups:
Which type of groups specify user permissions?
Answer: Security Groups
Which group contains all workstations and servers joined to the domain?
Answer: Domain Computers
Which group can publish certificates to the directory?
Answer: Cert Publishers
Which user can make changes to a local machine but not to a domain controller?
Answer: Local Administrator
Which group has their passwords replicated to read-only domain controllers?
Answer: Correct Answer
Task 5: Trusts + Policies
What type of trust flows from a trusting domain to a trusted domain?
Answer: Directional
What type of trusts expands to include other trusted domains?
Answer: Transitive
Task 6: Active Directory Domain Services + Authentication
The Active Directory domain services are the core functions of an Active Directory network; they allow for management of the domain, security certificates, LDAPs, and much more. This is how the domain controller decides what it wants to do and what services it wants to provide for the domain.
Tools by Ana Miminoshvili on Dribble
Domain Services Overview –
Domain Services are exactly what they sound like. They are services that the domain controller provides to the rest of the domain or tree. There is a wide range of various services that can be added to a domain controller; however, in this room we’ll only be going over the default services that come when you set up a Windows server as a domain controller. Outlined below are the default domain services:
Domain Authentication Overview –
The most important part of Active Directory — as well as the most vulnerable part of Active Directory — is the authentication protocols set in place. There are two main types of authentication in place for Active Directory: NTLM and Kerberos. Since these will be covered in more depth in later rooms we will not be covering past the very basics needed to understand how they apply to Active Directory as a whole. For more information on NTLM and Kerberos check out the Attacking Kerberos room – https://tryhackme.com/room/attackingkerberos.
The Active Directory domain services are the main access point for attackers and contain some of the most vulnerable protocols for Active Directory, this will not be the last time you see them mentioned in terms of Active Directory security.
What type of authentication uses tickets?
Answer: Kerberos
What domain service can create, validate, and revoke public key certificates?
Answer: Certificate Services
Task 7: AD in the Cloud
What is the Azure AD equivalent of LDAP?
Answer: REST APIs
What is the Azure AD equivalent of Domains and Forests?
Answer: Tenants
What is the Windows Server AD equivalent of Guests?
Answer: Trusts
Task 8: Hands-On Lab
Deploy the Machine
Answer: No answer required.
What is the name of the Windows 10 operating system?
Answer: Windows 10 Enterprise Evaluation
What is the second “Admin” name?
Answer: Admin2
Which group has a capital “V” in the group name?
Answer: Hyper-V Administrators
When was the password last set for the SQLService user?
Answer: 5/13/2020 8:26:58 PM
Task 9: Conclusion
Written by: Jamie Ngo
Tagged as: TryHackMe, Active Directory Basics.
todayApril 2, 2024
Cyber Security + Cyber Crime Jamie Ngo
A recent article from ABC News reported The Queensland Police are concerned about Flipper Zero, as it could be used to hack car keys and security systems. This is all [...]
Copyright 2021
Post comments (0)