Playing with #Azure Privileged Identity Management made me aware of two active accounts from old or failed AAD connector installations from way back.
And we don't want to leave something with that potential for misusage laying available in our AAD.
To check if you have you the same in your system don't need PIM, just search for "On-Premises Directory Synchronization Service Account"
↧