This guide contains best practices for securing Active Directory installations. The intended audience for this document is IT professionals who are responsible for maintaining the security of their Active Directory environment.
This guide contains recommendations for protecting domain controllers against known threats, establishing administrative policies and practices to maintain network security, and protecting Domain Name System (DNS) servers from unauthorized updates. It also provides guidelines for maintaining Active Directory security boundaries and securing Active Directory administration.