In this video, I am deploying Microsoft Defender for Identity (MDI), one of my favorite security products from Microsoft. MDI is a powerful tool designed to secure on-premises Active Directory environments by detecting and responding to advanced threats. It helps protect user identities and provides insights into suspicious activities, making it an essential component of any robust security strategy.
In this video, I am going to be deploying Microsoft Defender for Identity into a new environment. MSFT just released a new PowerShell modules to help us deploy Defender for Identity. I’ll walk you through what Defender for Identity is, how to install it, and provide guidance on securing your on-premises Active Directory environment. Whether you’re new to Defender for Identity or looking for the latest deployment techniques, this video has got you covered. Stick around for a comprehensive guide and feel free to jump to the installation section if you’re already familiar with the basics. Let’s get started!
0:00 – Introduction
1:00 – What is Microsoft Defender for Identity?
3:00 – Importance of Securing On-Premises Active Directory
5:00 – Key Features of Defender for Identity
8:00 – Installation Prerequisites
10:00 – Running the Sizing Tool
12:00 – Setting Up the Service Account
15:00 – Configuring Group Managed Service Accounts
18:00 – Enabling Advanced Auditing
20:00 – Installing the Sensor Package
23:00 – Post-Installation Configuration
25:00 – Setting Up Sensitive Accounts and Honey Tokens
28:00 – Reviewing Security Alerts and Recommendations
30:00 – Conclusion and Final Thoughts