Four common Active Directory and IT security mistakes made by IT admins in SA and how to solve them

These have to do with password policy, NTLM authentication, cleaning up platforms and privileged access, according to a survey by ManageEngine.

Johannesburg, 01 Aug 2019
Read time 1min 20sec

Ever wondered what the biggest IT security and Active Directory mistakes made by IT administrators (admins) in SA are? You will probably realise that you are not alone and that IT admins make the same mistakes as you do. But how do you make sure that you fix these mistakes and don’t have these common problems recur? IT management company ManageEngine recently conducted a survey on IT administrators in SA to find out what common mistakes are made when it comes to IT security and Active Directory.

These are the top four mistakes made in IT security and Active Directory:

1. Relying on Active Directory's (AD's) native password policy

"61% of IT admins believe their AD password policy is not enough to protect against password attacks."

2. Using NTLM authentication

"53% of IT administrators consider NTLM authentication to be unsecure, but find it difficult to track whether NTLM authentication is being used."

3. Neglecting to clean up Active Directory and other platforms

"38% of IT administrators said their AD is riddled with ghost accounts across platforms and find it challenging to clean them up."

4. Having no visibility on privileged access

"35% of the IT administrators find that employees have more privileges than the ones granted to them."

So, what’s the solution?

Take a look at the full survey results report and what ManageEngine proposes as solutions to these mistakes made by IT administrators in SA.


AD360 is an integrated identity and access management (IAM) solution for managing user identities, governing access to resources, enforcing security, and ensuring compliance. From user provisioning, self-service password management, and Active Directory change monitoring, to single sign-on (SSO) for enterprise applications, AD360 helps you perform all your IAM tasks with a simple, easy-to-use interface.

AD360 provides all these functionalities for Windows Active Directory, Exchange Servers, and Office 365. With AD360, you can just choose the modules you need and start addressing IAM challenges across on-premises, cloud, and hybrid environments from within a single console.


ManageEngine is the enterprise IT management division of Zoho Corporation. Established and emerging enterprises - including more than 60 percent of the Fortune 500 - rely on our real-time IT management tools to ensure optimal performance of their IT infrastructure, including networks, servers, applications, desktops and more. We have offices worldwide, including the United States, the Netherlands, India, Singapore, Japan, China, and Australia as well as a network of 200+ global partners to help organizations tightly align their businesses and IT. For more information, please visit; follow the company blog at and on LinkedIn at , Facebook at and Twitter @ManageEngine.

ITR Technology

ITR Technology have been the sole distributers of ManageEngine software in South Africa for over 18 years. With certified support engineers, a dedicated sales team and a newly constructed ManageEngine training centre, ITR Technology values making a difference in the lives of South African IT professionals. For more information, please visit, follow us Facebook, Twitter and LinkedIn Technology (ManageEngine South Africa).

*Source: Data obtained from surveys conducted at our 2019 Cybersecurity seminar.

Editorial contacts
ITR Technology Sally-Anne Robertson