Local Users

The Local Users page provides a list of enumerated local users in entire Acitve Directory. The list contains the Computer, Enabled, RDP, Exec DCOM, Exec PWSH, Admin, and Parent Local Group.

Local User Details

Details page contains the Risk Score of the Local User ,Exposure Point, Information, and Issues panes.

You can analyze objects in the Graph module by clicking the Visualize button on the upper left side of the Information Pane.

Information

Information Pane can contain different badges to highlight important attributes.

Badge

Description

Enabled

Indicates that the object is enabled.

Disabled

Indicates that the object is disabled.

Information Pane contains attributes below about local user object.

Attribute

Description

Object SID

Local security identifier of object.

Don't Require Password

Indicates whether the local user's password can be blank.

Non Expiring Password

Indicates whether the local user's password is set to never expire.

Password Expired

Indicates whether the local user's password is expired and should be changed.

Parent Local Group

Name of the direct parent group of the local user.

Admin

Indicates whether the local user can have admin privilege on the computer.

RDP

Indicates whether the local user can have enough privilege to connect with RDP (Remote Desktop Protocol) to the computer.

Exec DCOM

Indicates whether the local user can have enough privilege to execute commands with DCOM(Distributed Component Object Model) protocol on the computer.

Exec Powershell

Indicates whether the local user can have enough privilege to execute commands with Powershell on the computer.

Computer

Name of the computer object that contains the local user.

Issues

Issues pane contains identified issues on the local user object.

PreviousGMSAs NextLocal Groups

Last updated 2 months ago

Was this helpful?