Closed mdecrevoisier closed 2 years ago
Query 4: replication changes can be detected to catch DCsync attack Query 5: all directory service logs. Use full for security and also detect LDAP queries instead of LDAPS
Query 4: replication changes can be detected to catch DCsync attack Query 5: all directory service logs. Use full for security and also detect LDAP queries instead of LDAPS