Osirium Company Logo
Products

Privileged Access Security

Osirium PAM

Privileged Access Management

Osirium PPA

Privileged Process Automation

Osirium PEM

Privileged Endpoint Management

Free Tools

PAM Express

AD Audit Tool

PPA Express

PEM Audit Tool

Solutions

Industries



Education



Finance



Government and Defense



Healthcare



Industrial Control Systems



Legal



Managed (Security) Service Providers



Manufacturing



Retail

Third party access

Ensure your third parties and vendors have the correct level of privileged access.

Compliance

Demonstrate rigorous compliance with GDPR, PCI DSS, NIST 800-53 and more.

Company

About Osirium

News & Events

Management Team

Board of Directors

Investor Relations

Careers

Get Osirium PAM for Free

What is Privileged Process Automation?

Partners

Resellers and Distributors

Become a partner

Partner marketing support

Partner opportunity

What is Privileged Process Automation?

Why Partner with us?

Ensure your customers have the best PAM solution with the fastest time to realising value.

Resources

Blog

Case Studies

Data Sheets

White Papers

Videos

PAM Integrations

Free Active Directory Audit Tool

Documentation

Support


FREE PAM


Windows Server - Domain Controller (requires WinRM)

Vendor: Microsoft

Device type: Windows

Active Directory: Yes

Full PAM support

Supported device versions: 2008 - 2019

About Device

Microsoft Windows Server operating as a Domain Controller is at the heart of a Microsoft Active Diretory infrastructure.

Privileged Task Management


Run these automated tasks on the device directly from Osirium PAM



  • AD: Add Domain Account to Group
  • AD: Check if domain account exists
  • AD: Disable Domain Account
  • AD: Remove Domain Account from Group
  • AD: Reset a domain account password
  • AD: Unlock a domain account
  • AD: Verify if account is enabled
  • Active Directory Audit
  • Arp Flush
  • Check FIPS Mode
  • Check for Installed Hotfix
  • Check for Internet Connectivity
  • DNS: Add new alias (CNAME record)
  • DNS: Add new host (A record with PTR record)
  • DNS: Add new host (A record without PTR record)
  • DNS: Clear Cache
  • DNS: Delete alias (CNAME record)
  • DNS: Delete host (A records)
  • DNS: Export Zone
  • DNS: Force Secondary Zone Refresh
  • DNS: List Zones
  • DNS: Pause Zone
  • DNS: Reload Zone
  • DNS: Resume Zone
  • DNS: Server Info
  • DNS: Show host (CNAME record)
  • DNS: Start Scavenging
  • Enable user for limited time
  • Flush DNS Cache
  • Reset all active non-administrator RDP sessions
  • Reset all disconnected non-administrator RDP sessions
  • Restart Service
  • Run dcdiag
  • Show Service Status
  • Start Service
  • Stop Service
  • Synchronise domain group mappings
  • Techout

Privileged Access Management


Supported user tools (protocols) that provide access to the device through Osirium PAM



  • Active Directory Administrative Center
  • Active Directory Domains and Trusts
  • Active Directory Sites and Services
  • Active Directory Users and Computers
  • DHCP Manager
  • DNS Manager
  • Group Policy Management
  • Remote Desktop
  • WINS

Release notes for this template:


  • 2020-03-03 - Added AD Audit as a template task, the task will be delegated and added to the task queue
  • 2020-02-25 - Added dcdiag task
  • 2020-02-13 - Added Support for Server 2019
  • 2019-11-07 - Added DHCP Manager tool.
  • 2019-09-05 - Updated DNS Management tasks.
  • 2019-08-27 - Added DNS Manager and Active Directory Administrative Center MAP tool.
  • 2019-04-30 - Added Task to enable a user in PAM and set a number of hours for the account to remain active.
  • 2016-09-29 - RSAT tools are now available via MAP Server.
  • 2015-03-26 - RDP port can now be configured for connection to a device. Defaults to port 3389.
  • 2015-01-27 - Supports AD replication.
  • 2015-01-27 - Added Techout task.
  • 2015-01-05 - File _group_mappings.xml contains new tags which consolidate the amount of XML needed to do local and domain group memberships.
  • 2014-08-01 - Additional service tasks added.
  • 2013-09-24 - Added 'Check for installed Hotfix (Q/KB######)' and 'Check Internet Connectivity' tasks.
  • 2013-09-16 - New user task added to create a domain account with a full name, logon name and password. The user will be added to the default 'Users' CN.
  • 2013-09-16 - New user task added for disabling domain users which does not allow the user to disable 'Administrator'. If the built in account has been renamed please modify the disable_domain_account task.
  • 2013-05-21 - Designed for a Domain Controller only

Other devices of type Windows:

  • Windows Server - Domain Controller (no tasks) (2003 - 2019)
  • Windows Server - Domain Controller, No Roles (requires WinRM) (2008 - 2019)
  • Windows Server - Domain Member (RDP only, no tasks) (2003 - 2019)
  • Windows Server - Domain Member (requires WinRM) (2008 - 2019)
  • Windows Server - Domain Member, No Roles (requires WinRM) (2008 - 2019)
  • Windows Server - Local Accounts (RDP only, no tasks) (2003 - 2019)
  • Windows Server - Manage Local Accounts (requires WinRM) (2008 - 2019)
  • Windows Server - Static Vault (no tasks) (2003 - 2019)
  • Windows Server - Static Vault (requires WinRM) (2008 - 2019)

Other devices by Microsoft:

  • Azure (N/A)
  • Azure (N/A)
  • Exchange Admin Center (2016)
  • Exchange Server (RDP and Exchange Admin Center) (2016)
  • Hyper-V Manager (N/A)
  • Microsoft 365 (formerly Office 365) (N/A)
  • Microsoft 365 (formerly Office 365) (N/A)
  • Microsoft Online Sign In - Local Accounts (N/A)
  • Microsoft Online Sign In AD Accounts (N/A)
  • Microsoft SQL Server (2005 - 2012)
  • RDP gateway via RDP connection file (N/A)
  • SQL Server (16.x - 18.x)
  • SQL Server Management Studio (16.x - 18.x)
  • Windows Server - Domain Controller (no tasks) (2003 - 2019)
  • Windows Server - Domain Controller, No Roles (requires WinRM) (2008 - 2019)
  • Windows Server - Domain Member (RDP only, no tasks) (2003 - 2019)
  • Windows Server - Domain Member (requires WinRM) (2008 - 2019)
  • Windows Server - Domain Member, No Roles (requires WinRM) (2008 - 2019)
  • Windows Server - Local Accounts (RDP only, no tasks) (2003 - 2019)
  • Windows Server - Manage Local Accounts (requires WinRM) (2008 - 2019)
  • Windows Server - Static Vault (no tasks) (2003 - 2019)
  • Windows Server - Static Vault (requires WinRM) (2008 - 2019)

Other Active Directory devices:

  • Arcsight ESM console (6.9.1c)
  • Arcsight Logger SSO (N/A)
  • ASA (Adaptive Security Appliance) - Active Directory via TACACS (8.x - 9.x)
  • Azure (N/A)
  • BigFix Console (N/A)
  • Exchange Admin Center (2016)
  • Exchange Server (RDP and Exchange Admin Center) (2016)
  • Fusion (4.0.1)
  • IOS SSH - Active Directory via TACACS (12.1 - 15.x)
  • Microsoft 365 (formerly Office 365) (N/A)
  • Microsoft Online Sign In AD Accounts (N/A)
  • NetBackup (7.7.3)
  • Netbackup Administrator Console (8.0)
  • Netbackup OpsCenter (8.0)
  • OnCommand Unified Manager (N/A)
  • Security Server (9.3)
  • Solaris 10 - Active Directory (10 - 11)
  • Solaris 11 - Active Directory (11.0 - 11.4)
  • SQL Server (16.x - 18.x)
  • StealthWatch (N/A)
  • Unity Orchestrator (N/A)
  • Universal SSH Device - Active Directory (N/A)
  • Universal Unmanaged Device - Active Directory (N/A)
  • Universal Web Application SSO (N/A)
  • Universal Web Application SSO using Chrome (N/A)
  • VSphere WebClient Active Directory (v5.0 - N/A)
  • Windows Server - Domain Controller (no tasks) (2003 - 2019)
  • Windows Server - Domain Controller, No Roles (requires WinRM) (2008 - 2019)
  • Windows Server - Domain Member (RDP only, no tasks) (2003 - 2019)
  • Windows Server - Domain Member (requires WinRM) (2008 - 2019)
  • Windows Server - Domain Member, No Roles (requires WinRM) (2008 - 2019)
  • Xen Center (N/A)
  • XI (5.4.11)
Last edited: 2020-12-23 15:31:43

What Now?

  • Back to the device list

Resources

  • White Papers
  • Blog
  • Data Sheets
  • Videos
  • Case Studies
  • PAM Integrations
  • More ...

Support

  • Support Portal
  • Training
  • Documentation

Industries

  • Finance
  • Retail
  • Manufacturing
  • Legal
  • More...

Company

  • Osirium
  • Management Team
  • Board of Directors
  • News and Events
  • Investors
  • Careers
  • Contact us

other

  • Accessibility
  • Privacy Policy
  • EULA
  • Terms
  • Sitemap
  • 
  • 
  • 
  • 

Theale Court 11-13 High Street, Theale
Reading, Berkshire, RG7 5AH
United Kingdom

‍+44 (0) 118 324 2444

Copyright 2021 Osirium Ltd.