How To Manage Active Directory Authentication Policies And Silos Using PowerShell

Authentication policies and authentication policy silos are a great way to secure your Active Directory environment. Using these two AD objects, you’re able to manage high-privilege users, computers and service accounts to ensure they are only allowed to authenticate from certain computers and to certain computers.

In this video, we’ll manage all aspect of Active Directory authentication policies and authentication policy silos using just PowerShell. We’ll dive into commands like New-AdAuthenticationPolicy and New-AdAuthenticationPolicySilo, grant and revoke access to silos, change them and remove them. You’ll see that you won’t have to use the GUI again!

Prerequisites include: - Active Directory with a Windows Server 2012 R2 or later domain controller - Windows Server 2012 R2 domain functional level - Remote Server Administration Tools (RSAT) installed which includes the ActiveDirectory PowerShell module - At least one computer account, user account and service account