Baselines are a useful starting point, but no generic checklist can capture your organization’s unique identity and access risks. The session shows how Maester’s test authoring capabilities, combined with PowerShell and Pester, let you build custom security tests that reflect your actual policies and architectures. We’ll demonstrate how to test anything you can query—across Entra ID via Microsoft Graph, on-premises AD via LDAP and PowerShell remoting, and any other service with a PowerShell module, REST API, or CLI. Live on stage, we’ll turn real-world security policies into automated validations and show how Maester’s architecture makes it straightforward to extend coverage across your entire hybrid estate.

You’ll leave understanding how Pester, Microsoft Graph, and PowerShell fit together; how to cover Conditional Access, privileged access, authentication configuration, and tenant settings; how to extend tests to on-prem AD; how to connect to other services; and how to structure a growing test library so it stays maintainable, readable, and useful as living documentation of your security intent.