Case Study: Somfy strengthens Active Directory security with Tenable Identity Exposure

Somfy secures 1 forest and 2 domains with Tenable Identity Exposure

Somfy, a global manufacturer of building automation systems, faced unique security challenges in protecting its vast Active Directory infrastructure, which housed critical intellectual property and customer data. The company needed to identify weaknesses and misconfigurations across its complex directory environment, which included one forest and two domains with many administrators. To tackle this, they turned to Tenable Networks and implemented Tenable.ad, part of the Tenable Identity Exposure solution.

The solution provided by Tenable enabled real-time monitoring and immediate identification of hidden attack pathways, such as issues with AdminSDHolder and Kerberos delegation. Through workshops and a tailored mitigation plan, Somfy established a better delegation model, reduced misconfigured service accounts, and quickly identified new security issues. As a result, Tenable helped Somfy achieve quick wins, including mitigating admin misbehavior within one day and ensuring new machines were correctly patched.

Somfy