# Local Groups The `Local Groups` page provides a list of enumerated local groups in entire Acitve Directory. The list contains the `Computer`, `RDP`, `Exec DCOM`, `Exec PWSH`, `Admin`, and `Member Count`.

Local Groups

## Local Group Details Details page contains `Information` pane. {% hint style="info" %} You can analyze objects in the `Graph module` by clicking the `Visualize` button on the upper left side of the `Information Pane`. {% endhint %} ![Local Group Details](/files/NTFZjZdfhI39ewuXosnF) ## Information `Information Pane` contains `Details`, `Groups`, `Users`, `Computers`, `Local Groups`, `Local Users`, `MSAs` and `GMSAs` tabs respectively. ## Details Details tab contains attributes below about local group object. | Attribute | Description | | ---------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------- | | **Object SID** | Local security identifier of object. | | **Parent Local Group** | Name of the direct parent group of the local group. | | **Computer** | Name of the computer object that contains the local group. | | **Admin** | Indicates whether the local group can have admin privilege on the computer. | | **RDP** | Indicates whether the local group can have enough privilege to connect with RDP (Remote Desktop Protocol) to the computer. | | **Exec DCOM** | Indicates whether the local group can have enough privilege to execute commands with DCOM(Distributed Component Object Model) protocol on the computer. | | **Exec Powershell** | Indicates whether the local group can have enough privilege to execute commands with Powershell on the computer. | ## Groups Groups tab contains a list of groups that are children of the local group. This list also contains `Privileged` and `Admin` columns to identify the privilege levels of these groups. ![Groups](/files/aqndkJcG8Y1ULD6KFIWu) ## Users Users tab contains a list of users that are children of the local group. This list also contains `Enabled` column to identify the status of these users. ![Users](/files/DZgfBDmF9ByvfdlQxr9S) ## Computers Computers tab contains a list of computer that are children of the local group. This list also contains `IP Address` column to identify the network addresses of these computers. ![Computers](/files/sF7MBKPlLAR0sSdxgpCm) ## Local Groups Local groups tab contains a list of local groups that are children of the local group.

Local Groups

## Local Users Local users tab contains a list of local users that are children of the local group. ![Local Users](/files/4DZqDXiDCJzkGMGV7CuV) ## MSAs MSAs tab contains a list of managed service accounts that are children of the local group. This list also contains `Enabled` column to identify the status of these accounts. ![MSAs](/files/Jnlrr962QQcY3SXAdn1V) ## GMSAs GMSAs tab contains a list of group managed service accounts that are children of the local group. This list also contains `Enabled` column to identify the status of these accounts.

GMSAs

## DMSAs DMSAs tab contains a list of delegated managed service accounts that are children of the local group. This list also contains `Enabled` column to identify the status of these accounts.

DMSAs

--- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.forestall.io/fsprotect/ad-identities/local-groups.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.