fbpx
Active Directory

What is Event ID 4776: Domain Controller Attempted to Validate the Credentials for an Account

What is Event ID 4776: Domain Controller Attempted to Validate the Credentials for an Account. Many security events with odd usernames, misspelled names, attempts with expired or locked out accounts, or unusual logon attempts outside of business hours may be recorded by our domain controller’s Windows Event Viewer and given the Event ID 4776. Understanding […]

Active Directory Azure AD Cybersecurity

How to Secure Azure AD Against Cyber Threats

How to Secure Azure AD Against Cyber Threats. In 2022, Mandiant discovered UNC3944-related malicious behavior focused on Microsoft Azure. According to research conducted by Mandiant, the attacker used the Serial Console on Azure VMs in an attempt to install malicious remote management software. This is just the latest addition to a long list of cyberthreats […]

Active Directory Azure AD

What is Event ID 4771: Kerberos Pre-Authentication Failed

What is Event ID 4771: Kerberos Pre-Authentication Failed. Event ID 4771 is a common error message that is generated by the Windows security auditing feature. It typically indicates that a user’s Kerberos pre-authentication attempt has failed. In this article, we’ll explore the causes and consequences of this error message and discuss best practices for troubleshooting […]

Active Directory PowerShell

How to Find Active Directory Users Last Logon Time (Using ADUC)

How to Find Active Directory Users Last Logon Time (Using ADUC). Active Directory is a central component of many Windows based networks and serves as a database of users, groups, and computers that system administrators manage. One crucial task for system admins is to identify inactive user accounts in Active Directory and remove them to […]