all InfoSec news
At the Edge of Tier Zero: The Curious Case of the RODC
Security Boulevard securityboulevard.com
The read-only Domain Controller (RODC) is a solution that Microsoft introduced for physical locations that don’t have adequate security to host a Domain Controller but still require directory services for resources in those locations. A branch office is the classic use case.
While RODCs, by definition, are not part of the set of resources that can control “enterprise identities”, known as Tier Zero, we have seen cases where there is a privilege escalation path from an RODC to domain dominance. …
active directory security application security case cases control definition directory directory services domain domain controller don edge enterprise host identities microsoft office penetration testing physical red team resources security services social engineering solution the edge use case