Weekly Challenge! Active Directory Integration & User Groups 8/14/17


(Jessica) #1

Hello Hackbusters Community! This week’s challenge topic is: ACTIVE DIRECTORY INTEGRATION / USER GROUPS.

A big part of phishing and training comes down to your users’ professions. After your overall initial training and phishing, we like to recommend some spear-phishing for more targeted attacks. The most organized way to do this is by user groups. Breaking down users in this way is also fantastic for tracking purposes, reports and specialized security training. This week, I’d love to hear a hint, tip or issue you have seen/used for your company regarding groups.

How to enter:
Please include the following in your post:

  1. How you organize your users by groups or one hint/tip/comment about using groups for phishing and security awareness training

Post these as a reply right here in this thread.

References:
Active Directory Integration (ADI): https://knowbe4.zendesk.com/hc/en-us/articles/228373888-Active-Directory-Integration-ADI-

Users And Groups: https://knowbe4.zendesk.com/hc/en-us/articles/204936887-Users-and-Groups

Live Webinar - every Thursday at 1:30 PM Eastern - Active Directory Integration (ADI) Setup. Sign up at this link: https://attendee.gotowebinar.com/rt/1339691529967356931

Later this week at Hackbusters:
Tuesday: Ask us all about users, Active Directory Integration, CSV files – This will be an active discussion throughout the day.
Wednesday: Ransomware – Tech Talk.
Thursday: Best practices from the KnowBe4 experts.
Friday: Weekly Challenge Winner will be announced and new post on features.

Prizes:
The winning post will be chosen at random by the end of the week and will receive a T-Shirt!

Jessica S. Managed Services/Community Manager :face_with_monocle:


(Brian Steingraber) #2

We have all of our users grouped by their “role” in AD. So Medical Assistants, Nurses, Medical Receptionists, Etc all get a battery of standard training courses and phishing campaign templates. We then have additional groups for more specific roles like Mobile Device users, Finance, Etc. These groups are then assigned additional training (such as the Mobile Device Security course) or the ‘targets’ of additional phishing campaign templates specific to those roles.