Users
The Users page provides a list of enumerated users in entire Acitve Directory. The list contains the Enabled, Locked, Service User, Privileged, Admin, Local Admin, Session, Risk Score and Issue Counts.
User Details
Details page contains the Risk Score of the user, Information, Access Info and Issues panes.
You can analyze objects in the Graph module by clicking the Visualize button on the upper left side of the Information Pane.
Information
Information Pane can contain different badges to highlight important attributes.
Information Pane contains Details, Groups, Sessions, SPNs, Local Memberships and GPOs tabs respectively.
Details
Details tab contains attributes below about user object.
Groups
Groups tab contains a list of groups that the user is a member of. This list also contains Privileged and Admin columns to identify the privilege levels of these groups.
Sessions
Sessions tab contains a list of computers that the user has a session on. This list also contains IP Address, and Privileged columns to identify the network address and privilege levels of these computers.
SPNs
SPNs tab contains a list of Service Principal Names that are defined on the user object.
Local Memberships
Local Memberships tab contains a list of local groups that the user is a member of.
Local Group Name: Name of the local group that the user is a member of.
Computer: Name of the computer object that contains the local group.
Exec DCOM: Indicates whether the local group can have enough privilege to execute commands with DCOM(Distributed Component Object Model) protocol on the computer.
Exec PWSH: Indicates whether the local group can have enough privilege to execute commands with Powershell on the computer.
RDP: Indicates whether the local group can have enough privilege to connect with RDP (Remote Desktop Protocol) to the computer.
Admin: Indicates whether the local group can have admin privilege on the computer.
GPOs
GPOs tab contains a list of Group Policy objects which affects this user. This list also contains the Total Linked Entity column to highlight the total object count that is affected by this group policy object.
Access Info
Access Info pane contains First Degree Local Admin Count and Group Delegated Local Admin Count attributes.
First Degree Local Admin Count: Indicates that the user has explicit local admin privilege on how many computers.
Group Delegated Local Admin Count: Indicates that the user has group delegated local admin privilege on how many computers.
Issues
Issues pane contains identified issues on the user object.
Last updated
