Master Class: Securing Active Directory Deep Dive (SADDD-L1)


Quién debería asistir

This course is designed for experienced system administrators, consultants and Active Directory designers. After this seminar, you will be able to design, implement and consult on highly secure Active Directory.


At least 5 years of experience with Active Directory and client systems.

Objetivos del curso

In this master class course, the topic of Active Directory security is taken centrally into focus - in the meantime, various attack scenarios are known, which were used, for example, in the Bundestag hack ( mimikatz ).

These valid attack scenarios are aimed at credential theft or ransomware implementation (e.g. at the logistics company Maersk with an estimated damage of 300 million euros).

The goal of this workshop is to understand these scenarios so that you can prevent them and implement an Active Directory implementation that resists these attacks and is hardened against future attacks.

The Active Directory are your "crown jewels" - without Active Directory, most corporate environments are completely crippled productively.

That's why: Understand, harden and monitor so you can sleep better.

Contenido del curso

In this DeepDive workshop, you will learn how to implement, configure and operate Active Directory environments in a highly secure manner.

The Active Directory is "getting on in years". Especially from a security point of view, an Active Directory should NEVER be operated in the standard. Attack scenarios such as Pass-the-Hash, Silver-Ticket, Golden-Ticket or even Skeleton-Key are common ways of attackers who can attack the Active Directory and thus the users and administrators and take over the identities. Last but not least, the hack of the Bundestag with the help of mimikatz and others has shown the vulnerability of the Active Directory.

In this Master Class course, the attack scenarios on the Active Directory are first deeply examined and also carried out. With the knowledge gained from this, the Active Directory is now fundamentally hardened. This applies to existing installations, which should first be analyzed in depth, as well as new implementations, which are then completely hardened in order to be considered attack-proof in the future. The knowledge for this course was acquired in over 20 years of Active Directory experience, as well as in years of training by Paula Januszkiewicz and Sami Laiho, both world leaders in the field of security.

This course further incorporates the experience of over 50+ Active Directory concepts written by the instructor over his last 15 years - from SMB to enterprise level with 375,000 users. The topic of security is also being looked at in the direction of the General Data Protection Regulation (GDPR), which came into effect on May 25, 2018.

We promise: Our best know-how for you and your daily work from our most experienced trainers and consultants.

Training Environment:

In the training environment, we work entirely with Hyper-V. For the proactive setup of the training environment, we use a Powershell script with which you can create new virtual machines in seconds. The script was developed by your trainer himself and enables the training setup according to the customer's wishes in extreme speed with little effort.


Each participant has a dedicated server in a data center with a total of 1 Gbit connection to the Internet. Each participant server is equipped as follows:

128 GB RAM at least 20 vCores 2 NVME-SSDs with at least 3,000 MB/s writing and at least 2,000 MB/s reading 1 Gbit to the Internet Total bandwidth Your trainer Andy Wendel has been a trainer for over 20 years with deep experience in Active Directory, Group Policy, WSUS as well as HyperV and the System Center suite. In addition to his work as a Senior Cloud Architect & Consultant in large data centers, Andy Wendel has also been to Microsoft in Redmond to troubleshoot storage spaces for a large data center operator. Andy Wendel is an MCLC (one of 46 worldwide), as well as an MCSE and MCT.

In 2016, Andy Wendel acquired through Paula Januszkiewicz (one of the top 20 security experts in the world) the Certified Security Master Specilization: Advanced Windows Security 2017.

Only 100 participants worldwide were admitted to this course and only 4 German participants passed the exam. Andy Wendel completed this with distinction.

The exam was taken again in 2018 and passed: Certified Security Master Specilization: Advanced Windows Security 2018.

The exam was taken again in 2019 and passed: Certified Security Master Specilization: Advanced Windows Security 2019.

The exam was taken again in 2020 and passed: Certified Security Master Specilization: Advanced Windows Security 2020.

Precios & Delivery methods

Entrenamiento en línea

5 días

  • Consulta precio y disponibilidad
Classroom training

5 días

  • Consulta precio y disponibilidad

Click on town name or "Online Training" to book Calendario

Fecha garantizada:   Fast Lane llevará a cabo todos los cursos garantizados sin importar el número de participantes, excepto por razones de fuerza mayor u otros eventos inesperados, como e.g. accidentes o enfermedad del instructor, que eviten que el curso se realice.
Instructor-led Online Training:   Este es un curso en línea Guiado por un Instructor
Este es un curso FLEX, que es entregado tanto virtualmente como en el salón de clase.

Costa Rica

Entrenamiento en línea Zona Horaria: America/Costa_Rica Inscripción