What is AD?
Active Directory is the database implementation by Microsoft to store entities. It is used to perform tasks like authentication, authorization, and printer sharing. It uses a combination of protocols such as LDAP and Kerberos. Linux systems often use Samba when they need to use Microsoft's Active Directory.
The following security tools are linked to AD and are worth investigating.
- LogonTracer (visualize Windows authentication events)