FSProtect
  • Introduction
    • FSProtect - Active Directory Security Assessment
    • Glossary
    • Architecture
    • Requirements
    • Installation
    • Update
  • Scans
    • New Scan
    • Scans
    • Policies
  • Dashboard
  • Trend Insights
  • Issues
  • Impacts
  • Attack Surface
    • Forests
    • Domains
    • Computers
    • Users
    • Groups
    • GPOs
    • OUs
    • MSAs
    • GMSAs
    • Local Users
    • Local Groups
    • Certificate Authorities
    • Certificate Templates
    • CA Certificates
  • GPO Audit
    • GPO Comparison
    • RSoP Comparison
    • Custom Baselines
  • Integrations
    • CyberArk
    • Mail
    • Jira
  • Search & Reports
    • Domain
    • Computer
    • User
    • Group
    • GPO
    • OU
    • ManagedServiceAccount
    • GroupManagedServiceAccount
    • LocalUser
    • LocalGroup
    • CertificateAuthority
    • CertificateTemplate
    • CACertificate
    • SPN
    • SmbShare
  • Health Check
  • Visualize
  • Settings
    • User Settings
    • LDAP Authentication Settings
    • Roles and Permissions
    • Token Expiration Settings
  • Share Audit
    • Summary
    • Secrets
    • Settings
Powered by GitBook
On this page
  • Local User Details
  • Information
  • Issues

Was this helpful?

  1. Attack Surface

Local Users

PreviousGMSAsNextLocal Groups

Last updated 6 months ago

Was this helpful?

The Local Users page provides a list of enumerated local users in entire Acitve Directory. The list contains the Computer, Enabled, RDP, Exec DCOM, Exec PWSH, Admin, and Parent Local Group.

Local User Details

Details page contains the Risk Score of the Local User ,Exposure Point, Information, and Issues panes.

You can analyze objects in the Graph module by clicking the Visualize button on the upper left side of the Information Pane.

Information

Information Pane can contain different badges to highlight important attributes.

Badge
Description

Enabled

Indicates that the object is enabled.

Disabled

Indicates that the object is disabled.

Information Pane contains attributes below about local user object.

Attribute
Description

Object SID

Local security identifier of object.

Don't Require Password

Indicates whether the local user's password can be blank.

Non Expiring Password

Indicates whether the local user's password is set to never expire.

Password Expired

Indicates whether the local user's password is expired and should be changed.

Parent Local Group

Name of the direct parent group of the local user.

Admin

Indicates whether the local user can have admin privilege on the computer.

RDP

Indicates whether the local user can have enough privilege to connect with RDP (Remote Desktop Protocol) to the computer.

Exec DCOM

Indicates whether the local user can have enough privilege to execute commands with DCOM(Distributed Component Object Model) protocol on the computer.

Exec Powershell

Indicates whether the local user can have enough privilege to execute commands with Powershell on the computer.

Computer

Name of the computer object that contains the local user.

Issues

Issues pane contains identified issues on the local user object.

Local Users
Local User Details
Issues