Active Directory Hardening Clinic
RCCE students will learn identity governance, authentication protocols, authorization models, privilege escalation prevention, and access lifecycle management. RCCE students will learn to design and enforce identity controls that prevent unauthorized access, stop account takeover attacks, eliminate privilege abuse, and implement zero-trust identity verification across enterprise environments. This hands-on hardening course focuses on reducing attack surface through practical configuration changes and security guardrails. Building on core knowledge, RCCE students will learn to apply hardening baselines, validate configurations, and measure the security improvement achieved. Students walk away with actionable hardening checklists and the skills to maintain hardened configurations as environments evolve.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Active Directory Hardening Clinic
- Execute hands-on tasks for active directory
- Execute hands-on tasks for hardening clinic
- Integrate privilege controls with identity providers and SIEM telemetry, including identity controls, and Prevent unauthorized access.
- Measure attack surface reduction and program effectiveness — covering Apply hardening baselines, configurations.
- Apply zero-trust principles to privilege decisions and elevation, including verification, and Stop account takeover.
- Explain Topic Map Overview fundamentals
- Design a scalable privilege management architecture with policy and enforcement
- Execute hands-on tasks for group policy hardening
- Execute hands-on tasks for threat landscape & attack
- Integrate privilege controls with identity providers and SIEM telemetry
- Execute hands-on tasks for privilege escalation prevention
| Module 01 | Active Directory |
| Module 02 | Hardening Clinic |
| Module 03 | Identity Governance |
| Module 04 | Attack Surface Reduction |
| Module 05 | Zero-Trust Identity |
| Module 06 | Topic Map Overview |
| Module 07 | AD Architecture & Components |
| Module 08 | Group Policy Hardening |
| Module 09 | Threat Landscape & Attack |
| Module 10 | Identity Governance Framework |
| Module 11 | Privilege Escalation Prevention |
| Module 12 | Active Directory Architecture |
| Module 13 | Global Catalog |
| Module 14 | Domain Controller |
All hands-on labs run on Rocheston Rose X OS. Students practice active directory hardening clinic by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Execute hands-on tasks for active directory
- Lab 2: Execute hands-on tasks for hardening clinic
- Lab 3: Integrate privilege controls with identity providers and SIEM telemetry
- Lab 4: Measure attack surface reduction and program effectiveness
- Lab 5: Apply zero-trust principles to privilege decisions and elevation
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Active Directory Hardening Clinic, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI