T identity risk exposure management and local user MFA features, designed to bolster organisations’ defences against the ever-present threat of identitybased cyberattacks.
INTELLIGENT ZERO TRUST
Dubai-based ManageEngine boosts identity security with new AD360 features
ManageEngine, a Zoho Corporation division and prominent provider of enterprise IT management solutions based in the UAE, has unveiled significant enhancements to its AD360 platform.
he company has rolled out new
T identity risk exposure management and local user MFA features, designed to bolster organisations’ defences against the ever-present threat of identitybased cyberattacks.
The new capabilities aim to empower security teams by offering a clearer view of potential attack pathways and extending robust multi-factor authentication( MFA) to previously unsecured local user accounts. This move is crucial for businesses looking to align their security posture with the modern Zero Trust framework.
The identity risk exposure management feature provides advanced threat detection, enabling IT professionals to visualise how malicious actors might escalate privileges or move covertly within an organisation’ s network. This proactive approach helps to uncover vulnerabilities before they can be exploited.
“ With this release, ManageEngine AD360 moves beyond traditional IAM by embedding identity threat defenses into core identity operations. By turning identity data into actionable security insights, we’ re helping customers make IAM the first line of defense, not a check box,” said Manikandan Thangaraj, vice president of ManageEngine.
While most IAM tools focus on provisioning and policy enforcement, AD360 adds risk exposure mapping via attack path analysis as well as local MFA enforcement, helping enterprises close attack paths that often go undetected. This marks a key step in identity management evolving from an access control layer into an active security control.
New capabilities
• Identity risk exposure management: Graph‐based analysis maps lateral movement and privilege escalation paths in Active Directory( AD), automatically prioritising risky configurations and recommending remediation steps. The graph engine models AD objects as nodes and privilege inheritance as lines, revealing multi‐step attack chains in real time, with actionable suggestions that IT teams can implement to close exposed paths.
• Local user MFA: The feature extends adaptive MFA to local accounts on non‐domain‐joined servers, DMZ assets and test environments, thwarting credential stuffing and persistence techniques.
• ML‐driven access recommendations: During provisioning and access review campaigns, machine learning analyses permission patterns and suggests adjustments to implement least privilege access, helping prevent excess entitlements.
ManageEngine’ s latest updates to AD360 directly address these common attack vectors, providing businesses with more sophisticated tools to protect their digital identities at scale.
Furthermore, the introduction of local user MFA allows enterprises to deploy strong, enterprise-grade multi-factor authentication to local accounts that often remain unmanaged by central security systems. This closes a critical loophole, as credential abuse continues to be a primary target for attackers.
According to Verizon’ s 2025 Data Breach Investigations Report, the abuse of credentials served as the initial access vector in a substantial 22 % of breaches. The report also highlighted widespread abuse of poorly managed local accounts and privilege paths across over 12,000 confirmed breaches.
30 WWW. INTELLIGENTCISO. COM