The world's most trusted forum on Active Directory Security

Post Info TOPIC: How detailed is the Microsoft Active Directory Risk Assessment Program (RAP) ?


Posts: 4
Date: Jan 3, 2013
How detailed is the Microsoft Active Directory Risk Assessment Program (RAP) ?

Hello Forum,

We are a medium-sized organization and for the most part, operate on a Wintel infrastructure with Active Directory being the foundation of our Windows Server 2008 powered IT infrastructure.

We have a new IT Director now, who was previously at a financial institution, and so we have some new security initiatives that are underway, one of them being a project to assess and enhance the security of our Active Directory deployment.

It has been suggested internally that we consider Microsoft's Active Directory Risk Assessment Program (RAP), Tier 1 (given that we have less than 30 DCs) as it might be a good starting point to assess the security risks to our Active Directory.

However, I have heard mixed reviews of MS's RAP, in that while its definitely considered helpful, some friends at other organizations felt that it was a tad light on the security side of the house.

So I thought I'd try and get some additional opinions on it before we engage them to help in this regard. We basically want to make sure that it is the best use of our resources for such a project.

If you have any experience with or thoughts on Microsoft's RAP, kindly consider sharing. In particular, we're trying to figure out if its detailed enough on the security assessment aspect.




Build The Bridge.

Page 1 of 1  sorted by
Quick Reply

Please log in to post quick replies.

Post to Digg Post to
Members Login
    Remember Me