Skip to content

Question 1 of 11

Which best describes your organization's Active Directory forest architecture?
How many Active Directory domain controllers are deployed across your environment?
Which best describes your organization's Active Directory backup strategy?
How does your organization manage and secure privileged accounts?
Which best describes your organization's domain controller patching practices?
Which best describes your organization's tiered administration model for privileged access?
How widely is Multi-Factor Authentication enforced across your organization?
Which best describes your organization's identification of business-critical applications?
What is the current state of disaster recovery (DR) planning for your business-critical applications?
How dependent are your critical business applications on Active Directory / Microsoft Entra ID?
How is AD integrated into your organization's cyber resiliency and recovery plans?

65% Your Score

RED ZONE: Critical Risk

Your AD infrastructure faces critical security and recovery gaps that could result in extended downtime during an incident.


Minimal to no backup strategy


No privileged access management


Limited or no recovery planning


High vulnerability to ransomware/cyberattacks


65% Your Score

ORANGE ZONE: Moderate Risk

Your AD has foundational protections but lacks comprehensive resiliency measures for business continuity.


Basic security measures in place


Some backup and recovery planning


Room for significant improvement


Moderate resilience to incidents


65% Your Score

GREEN ZONE: Strong Resiliency

Your AD demonstrates strong resiliency practices with minor optimization opportunities.


Comprehensive security posture


Robust backup and recovery plans


Well-prepared for incident response


Strong business continuity capabilities