Securing Microsoft Enhanced Security Administrative Environments (ESAE) with CyberArk Privileged Access Security
The Enhanced Security Administrative Environments (ESAE) is a secured, bastion forest architecture designed to manage the Active Directory and all the associated identities that exist within ‘Tier-0’ environments. Its general purpose is to lock down and secure these environments for obvious reasons – if an attacker gains access to high profile targets such as ‘Tier-0’ assets and the Active Directory, they’re ultimately provided with untethered access to domain-joined IT infrastructure. One of the most commonly used techniques in advanced attacks is to exploit privileged accounts and their associated credentials, especially those that provide access to the domain controller. This solution brief describes how CyberArk can help secure privileged access, create credential boundaries, provide enhanced auditing and recording within the ESAE and production environments, and more!