9 docs tagged with "active-directory-auditing"

Active Directory Permissions Analyzer (ADPA) reports show old data from deprecated domains. Create and run a job to remove outdated ADPA tables and repopulate them for active domains.

Lists where the AD_SecurityAssessment report retrieves data for each category, including the tables/views and jobs you can use to investigate and mitigate vulnerabilities.

Explains whether the built-in Windows Users group (S-1-5-32-545) is required for Netwrix Access Analyzer and where to find the default installation folder and role-based access documentation.

Learn how to collect the Active Directory Summary report values (Total Users and Disabled Users) for licensing compliance in Netwrix Access Analyzer.

Deleted Active Directory user accounts still appear in Netwrix Access Analyzer reports because the AD Inventory (ADI) scan did not detect deletions; this article explains how to run a full AD Inventory Scan to resolve the issue.

ADInventory may not flag deleted objects unless it can access the Deleted Objects container or you run a full scan. This article explains why the IsDeleted column is not populated and how to grant or verify access to the Deleted Objects container.

The isDeleted attribute is not being evaluated during ADI scans. Grant List Contents and Read Properties permissions on the Deleted Objects container so deleted objects are included in scans.

When you add a new share in Netwrix Access Analyzer (AIC) and see ObjectSID values instead of group names, the ADInventory scan is likely misconfigured or unable to target the correct domain controllers. This article describes symptoms, causes, troubleshooting steps, and resolution to restore group resolution in AIC.

Explains how to remove audit data for a decommissioned or excluded domain by using the Drop Domain task in Netwrix Auditor to delete the related data from your SQL Server.