FSProtect
  • Introduction
    • FSProtect - Active Directory Security Assessment
    • Glossary
    • Architecture
    • Requirements
    • Installation
    • Update
  • Scans
    • New Scan
    • Scans
    • Policies
  • Dashboard
  • Trend Insights
  • Issues
  • Impacts
  • Attack Surface
    • Forests
    • Domains
    • Computers
    • Users
    • Groups
    • GPOs
    • OUs
    • MSAs
    • GMSAs
    • Local Users
    • Local Groups
    • Certificate Authorities
    • Certificate Templates
    • CA Certificates
  • GPO Audit
    • GPO Comparison
    • RSoP Comparison
    • Custom Baselines
  • Integrations
    • CyberArk
    • Mail
    • Jira
  • Search & Reports
    • Domain
    • Computer
    • User
    • Group
    • GPO
    • OU
    • ManagedServiceAccount
    • GroupManagedServiceAccount
    • LocalUser
    • LocalGroup
    • CertificateAuthority
    • CertificateTemplate
    • CACertificate
    • SPN
    • SmbShare
  • Health Check
  • Visualize
  • Settings
    • User Settings
    • LDAP Authentication Settings
    • Roles and Permissions
    • Token Expiration Settings
  • Share Audit
    • Summary
    • Secrets
    • Settings
Powered by GitBook
On this page

Was this helpful?

  1. Search & Reports

Domain

Field
Type
Possible Operators
Description

Guid

TEXT

LIKE, EQUAL, NOT_EQUAL

A unique identifier that is a combination of GUID of selected Scan and Active Directory ObjectGUID of the object.

FSName

TEXT

LIKE, EQUAL, NOT_EQUAL

Fully Qualified Domain Name of the Domain.

ObjectSid

TEXT

LIKE, EQUAL, NOT_EQUAL

Active Directory security identifier of object. (Ldap Display Name: objectSid)

Name

TEXT

LIKE, EQUAL, NOT_EQUAL

Name of the specified object. (Ldap Display Name: name)

DistinguishedName

TEXT

LIKE, EQUAL, NOT_EQUAL

Active Directory distinguished name of the object. (Ldap Display Name: distinguishedName)

FSMORoleOwner

TEXT

LIKE, EQUAL, NOT_EQUAL

Flexible Single-Master Operation: The distinguished name of the DC where the schema can be modified. (Ldap Display Name: fSMORoleOwner)

WhenChanged

DATE

SMALLER, LARGER, BETWEEN, EQUAL

The date when this object was last changed. (Ldap Display Name: whenChanged)

MsDSMachineAccountQuota

NUMBER

EQUAL, BETWEEN, SMALLER, LARGER, SMALLER_EQUAL, LARGER_EQUAL

The number of computer accounts that a user is allowed to create in a domain. (Ldap Display Name: ms-DS-MachineAccountQuota)

WhenCreated

DATE

SMALLER, LARGER, BETWEEN, EQUAL

The date when this object was created. (Ldap Display Name: whenCreated)

LockoutThreshold

NUMBER

EQUAL, BETWEEN, SMALLER, LARGER, SMALLER_EQUAL, LARGER_EQUAL

The number of invalid logon attempts that are permitted before the account is locked out. (Ldap Display Name: lockoutThreshold)

DomainMode

TEXT

LIKE, EQUAL, NOT_EQUAL

MinPwdLength

NUMBER

EQUAL, BETWEEN, SMALLER, LARGER, SMALLER_EQUAL, LARGER_EQUAL

The minimum number of characters that a password must contain. (Ldap Display Name: minPwdLength)

DomainModeLevel

NUMBER

EQUAL, BETWEEN, SMALLER, LARGER, SMALLER_EQUAL, LARGER_EQUAL

risk

NUMBER

EQUAL, BETWEEN, SMALLER, LARGER, SMALLER_EQUAL, LARGER_EQUAL

The risk score of the object that calculated based on vulnerability counts and severities.

IsEnumerable

BOOLEAN

N/A

Indicates the FSProtect enumeration status of the domain.

PwdProperties

NUMBER

EQUAL, BETWEEN, SMALLER, LARGER, SMALLER_EQUAL, LARGER_EQUAL

IsRecycleBinEnabled

BOOLEAN

N/A

Indicates whether the recycle bin is activated for the domain.

IsRootDomain

BOOLEAN

N/A

Indicates whether the domain is the root of the forest.

PwdHistoryLength

NUMBER

EQUAL, BETWEEN, SMALLER, LARGER, SMALLER_EQUAL, LARGER_EQUAL

The number of old passwords to save. (Ldap Display Name: pwdHistoryLength)

InfrastructureRoleOwner

TEXT

LIKE, EQUAL, NOT_EQUAL

Domain controller that holds the infrastructure owner role.

RidRoleOwner

TEXT

LIKE, EQUAL, NOT_EQUAL

Domain controller that holds the relative identifier (RID) master role for this domain.

NetbiosName

TEXT

LIKE, EQUAL, NOT_EQUAL

The name of the object to be used over NetBIOS. (Ldap Display Name: nETBIOSName)

PdcRoleOwner

TEXT

LIKE, EQUAL, NOT_EQUAL

Domain controller that holds the primary domain controller (PDC) for this domain.

PreviousSearch & ReportsNextComputer

Last updated 8 months ago

Was this helpful?

The operating mode of the domain. ()

The operating mode level of the domain. ()

A bitfield to indicate complexity and storage restrictions. (Ldap Display Name: pwdProperties) ()

Field reference
Field Reference
Field Reference