Stronger security by consolidation of all environments into one
P&G has around multiple Active Directory forests. The aim of this project was to migrate all Active Directory dependent resources to one, flat and more secure forest. The project implements best security and hardening practices for Active Directory and replaces legacy domains. P&G implementation reflects the design principles as they existed when AD was first launched, which were valid at the time of implementation but are now increasing the overall support costs. Considering the number of Active Directory environments deployed, the AD Transformation project aimed to consolidate all these environments into a single but more secure implementation of AD red forest we simply call New AD. In addition to ensuring security within the Active Directory infrastructure, this consolidation simplifies the administration, which in turn reduces operational costs. New Active Directory is built based on Enhanced Security Administrative Model with Windows Server, AWS, Azure AD, Microsoft 365 and Intune. The skillset we learned throughout the project was managing tier 0 environments with dedicated Privileged Access Workstations, including Intune and Endpoint Management; Azure cloud monitoring and security: Defender for Endpoints and Defender for Identities.