Users
The Users
page provides a list of enumerated users in entire Acitve Directory. The list contains the Enabled
, Locked
, Service User
, Privileged
, Admin
, Local Admin
, Session
, Risk Score
and Issue Counts
.
User Details
Details page contains the Risk Score
of the user, Information
, Access Info
and Issues
panes.
You can analyze objects in the Graph module
by clicking the Visualize
button on the upper left side of the Information Pane
.
Information
Information Pane
can contain different badges to highlight important attributes.
Information Pane
contains Details
, Groups
, Sessions
, SPNs
, Local Memberships
and GPOs
tabs respectively.
Details
Details tab contains attributes below about user object.
Groups
Groups tab contains a list of groups that the user is a member of. This list also contains Privileged
and Admin
columns to identify the privilege levels of these groups.
Sessions
Sessions tab contains a list of computers that the user has a session on. This list also contains IP Address
, and Privileged
columns to identify the network address and privilege levels of these computers.
SPNs
SPNs tab contains a list of Service Principal Names
that are defined on the user object.
Local Memberships
Local Memberships tab contains a list of local groups that the user is a member of.
Local Group Name: Name of the local group that the user is a member of.
Computer: Name of the computer object that contains the local group.
Exec DCOM: Indicates whether the local group can have enough privilege to execute commands with DCOM(Distributed Component Object Model) protocol on the computer.
Exec PWSH: Indicates whether the local group can have enough privilege to execute commands with Powershell on the computer.
RDP: Indicates whether the local group can have enough privilege to connect with RDP (Remote Desktop Protocol) to the computer.
Admin: Indicates whether the local group can have admin privilege on the computer.
GPOs
GPOs tab contains a list of Group Policy
objects which affects this user. This list also contains the Total Linked Entity
column to highlight the total object count that is affected by this group policy object.
Access Info
Access Info pane contains First Degree Local Admin Count
and Group Delegated Local Admin Count
attributes.
First Degree Local Admin Count: Indicates that the user has explicit local admin privilege on how many computers.
Group Delegated Local Admin Count: Indicates that the user has group delegated local admin privilege on how many computers.
Issues
Issues pane contains identified issues on the user object.
Last updated