Builtin Administrator Audit

This is an interactive task that performs an audit against the builtin Administrator account on Active Directory.

Several parameters from the following Microsoft security guide are checked during the audit.

Playbook Files

Running this Playbook

  • Click download playbook
  • Import the downloaded file via the Playbooks page on PPA
  • Build the playbook from the Edit & Build tab
  • Run the playbook from the Preview & Deploy tab
* Requires PPA v2.9.x or newer

Integrations

Required Vault Details

Active Directory

  • IP/DNS address of a Domain Controller
  • Domain FQDN
  • Username
  • Password

The Active Directory credentials require permission to read user account information.

Vault Configuration Wizard

The first time you run a task built from this playbook, PPA will check the required Vault details exist.

If they don't exist, PPA will ask you to supply the details at the start of the task.

Below you can see a user providing details the first time they run an Active Directory task.

vault-config-wizard

Once the details are added to Vault, the task won't ask for them again.

If you don't know the required details, ask an administrator to run the task or configure Vault manually.

What the Task Does

Once started, this task will:

  • Find the builtin Administrator account in Active Directory
  • Audit several account attributes & UAC flags
  • Generate a report based on this Microsoft security guide.
Product Boot Screen

Get PPA for free!

Start automating your estate with a free 30 day trial today. No signup required!

Get PPA Express

Documentation


Theale Court
11-13 High Street, Theale
Reading, Berkshire, RG7 5AH
United Kingdom
+44 (0) 118 324 2444

Logo

Copyright 2020 Osirium Ltd.