An-dir

Results 26 comments of An-dir

Users information -> Inactive Objects >6 monthts : Lot of user listed in this menu are not inactive

Hello @Info-NI i have posted some information today regarding Inactive counter in issue#83 here are the details that might help for your case: Reading the source of the rule "S-Inactive"...

PingCastle shows Azure AD Kerberos server as inactive

maybe i can help to answer some questions in this situation. I don't know any reliable onprem solution to check if it is "active" as the activity is primary in...

PingCastle shows Azure AD Kerberos server as inactive

@loosus it is just one "fake domain controller" - no need for redundancy and you can only have one per domain (multiple per forest), as far as i know. Read...

PingCastle shows Azure AD Kerberos server as inactive

> * take a look at CN=900274c4-b7d2-43c8-90ee-00a9f650e335,CN=AzureAD,CN=System, > * open attribute "keywords" > * copy value of "ComputerAccountSid" > * search computer with the sid you just copied > ->...

PingCastle shows Azure AD Kerberos server as inactive

The "900274c4-b7d2-43c8-90ee-00a9f650e335" is a guid and according to microsofts documentation it is always the same. So it can be used to identify this unique "domain controller"

Suggestion: add primary group ID and name for "objects having the primary group attribute changed"

@cnotin is there any need to know what the primary group was? did you notice any wrong detection or were you able to change the primary group just to be...

Suggestion: add primary group ID and name for "objects having the primary group attribute changed"

Extending Pingcastle would mean to edit / duplicate this function to have "PrimaryGroup" (DistinguishedName) included here: https://github.com/vletoux/pingcastle/blob/master/Healthcheck/HealthcheckAnalyzer.cs#L608 use the new function here https://github.com/vletoux/pingcastle/blob/master/Healthcheck/Healthcheck.cs#L411 ...and here https://github.com/vletoux/pingcastle/blob/master/Healthcheck/Healthcheck.cs#L428 and for the output...

NB Inactive Counter

Hi @sbuck1 reading the source of the rule "S-Inactive" for "InactiveUserOrComputer" or so called "Dormant accounts" in the following files, it is clear that the time for **activity** is being...

NB Inactive Counter

Additional hint from the comment that might also apply here: "Please note that PingCastle relies on the attribute LastLogonTimestamp to perform this check. The LastLogonTimestamp attribute is replicated but has...

Suggestion - S-DCRegistration to include AD Connect servers as DCs

in my opinion it should be one or more new S-ADConnectServer but i am unsure what kind of checks you would need then. How would the automated detection work? Reading...