Skip to content
Salus Cyber

Penetration Testing

Active Directory Security Review

Protect your critical assets with our AD security review.

Safeguard against unauthorised access and potential data breaches.

Active Directory (AD) is a critical component of many organisations' IT infrastructure. A secure and well-managed AD environment is essential for maintaining the confidentiality, integrity, and availability of your organisation's data.

Our team of highly experienced professionals, including certified experts with CREST, Cyber Scheme, and Offensive Security qualifications, have extensive knowledge and experience in the latest hacking techniques and threat actors. That's why we offer a comprehensive AD security review service to help you identify vulnerabilities and weaknesses in your AD environment and provide practical recommendations for remediation.


  • Domain Architecture Review: A review of the overall design of the AD domain, including the structure of OUs, groups, and the use of group policies to ensure the proper configuration of security settings and permissions.


  • Domain Infrastructure Review: A review of the group policy settings configured in AD and security configurations of AD, including the use of security controls such as firewalls, intrusion detection and prevention systems, encryption, and Kerberos.


  • Account Security Review: A review of user accounts, their associated privileges and permissions, and Identity access management. This includes administrative privileges in AD, domain administrators, enterprise administrators, and other privileged accounts.



A comprehensive AD security review can help identify vulnerabilities and weaknesses in the system that could be exploited by Threat Actors. Our team of experienced professionals will conduct a thorough assessment of the AD environment that’ll provide a detailed report on any security risks we identify, along with recommendations for remediation.


Our Active Directory Security Review is not just about meeting industry standards but about working closely with our clients to understand their unique security needs and tailor our approach to exceed expectations.


In many organisations, users have excessive permissions that may not be necessary for their job role, which can lead to potential security risks. Salus Cyber can help identify and remediate these excessive user privileges by performing a thorough analysis of user permissions, group memberships, and access controls within Active Directory.


A combination of misconfigurations within Identity and Access controls can leave the network vulnerable to unauthorised access and misuse. Salus Cyber's AD security review can help identify weaknesses in the identity and access controls and provide recommendations for strengthening security measures to prevent unauthorised access and misuse of sensitive information.

How we work

Customer Journey

  1. Identify

    First, we take time to familiarise ourselves with your business. This allows us to clearly understand your requirements, your business risks, your key pain-points, and the outcomes you’re looking for.

  2. Understand

    We turn those requirements into crystal-clear scoping and test plan documents, so you know precisely what we’ll be doing, when we will be doing it, and how we will do it.

  3. Test

    We deliver what we promised.

  4. Inform

    Every report we create is unique based on your business, we don’t use cookie cutter data for our summaries or our remediation plans. Our precise and concise findings brief will advise what steps your business needs to take next to reduce cyber risk.

  5. Remediate

    We can ensure that the remediation process is tracked and coordinated within your business, we will allocate resources to point you in the right directions or if you need our help directly with remediation, we’ve got you covered.

  6. Feedback

    Your opinion is important to us, so we send a questionnaire to every one of our customers after each project – so you can let us know how we did.

Request a call back