# OUs The `OUs` page provides a list of enumerated organizational unit objects in entire Acitve Directory. The list contains the `Member Count`, `Risk Score`,`Exposure Point` and `Issue Counts`.

## Organizational Unit Details Details page contains the `Risk Score` of the organizational unit,`Exposure Point` `Information`, and `Issues` panes. {% hint style="info" %} You can analyze objects in the `Graph module` by clicking the `Visualize` button on the upper left side of the `Information Pane`. {% endhint %}

## Information `Information Pane` contains `Details`, `Groups`, `Users`, `Computers`, `OUs`, `MSAs`, `GMSAs`, and `Linked GPOs` tabs respectively. ## Details Details tab contains attributes below about organizational unit. | Attribute | Description | | ---------------------- | --------------------------------------------------------------------------------------------- | | **Distinguished Name** | Active Directory distinguished name of the object. (**Ldap Display Name**: distinguishedName) | | **Description** | Description text to display for an object. (**Ldap Display Name**: description) | | **Parent OU** | The direct parent Organizational Unit of the object. | | **Block Inheritance** | Indicates whether the OU blocks Group Policy inheritance. (**Ldap Display Name**: gPOptions) | | **Created Time** | The date when this object was created. (**Ldap Display Name**: whenCreated) | | **Last Changed Time** | The date when this object was last changed. (**Ldap Display Name**: whenChanged) | ## Groups Groups tab contains a list of groups that are in the organizational unit. This list also contains `Privileged` and `Admin` columns to identify the privilege levels of these groups.

## Users Users tab contains a list of users that are in the organizational unit. This list also contains `Enabled` column to identify the status of these users.

## Computers Computers tab contains a list of computers that are in the organizational unit. This list also contains `IP address` column to identify the network address of these computers.

## OUs OUs tab contains a list of organizational units that are in the organizational unit.

## MSAs MSAs tab contains a list of managed service accounts that are in the organizational unit.

## GMSAs MSAs tab contains a list of group managed service accounts that are in the organizational unit.

## DMSAs DMSAs tab contains a list of delegated managed service accounts that are in the organizational unit.

## Linked GPOs Linked GPOs tab contains a list of group policy objects that are linked to the organizational unit directly. This list also contains `Enforced` and `Order` columns to highlight the enforcement status and link order of these group policy objects.

## Issues Issues pane contains identified issues on the organizational unit object. ![Issues](/files/qI2FyhiWFDau3I11vGIh) --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.forestall.io/fsprotect/ad-identities/ous.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.