Which method of Phishing Credential Prevention?

brucegarlock — Mon, 20 Nov 2017 16:48:32 GMT

We are currently using User-ID to map users to IP addresses. It seems that there are three possible methods of preventing credentials from leaving a site, but I am not clear on which method is best. What are other folks doing? One of the methods involves spinning up a RODC, which seems to be the most accurate of the three methods, but there is cost with that one if you don't have licensing to cover that server. It's also another server to keep patched, so there's an on-going cost with that method.

We have the licensing to spin up a RODC server, but I'm not sure if the Pro's outweigh the Con's with that choice.

I'm interested in hearing what methods other people have used to implemented this very useful feature.

topic Which method of Phishing Credential Prevention? in Advanced Threat Prevention Discussions

Which method of Phishing Credential Prevention?