Forum Discussion

StuartSquibb's avatar
StuartSquibb
Copper Contributor
Nov 27, 2020

Security assessment: Microsoft LAPS usage

We have had LAPS in our environment for a number of months now, but we have 2 issues with the LAPS usage assessment: 1. Duplicate device entries - we have around 100 devices with 2 or sometime 3 e...
SandyMc's avatar
SandyMc
Copper Contributor
Jan 27, 2021

@Or Tsemah

 

Hopefully its OK that I jump on this thread.

I have been looking at the LAPS reports this morning and wonder if its possible to get some more fields addded?

A lot of the machines in the report are either disabled or deleted (tombstoned) in AD. I don't see any point in following them up, so it would be good if we could filter them out.

It would also be useful to see if the machine is active or not.  Could you add lastLogonTimestamp (the replicated one) so we can see if the machine is worth following up?
Best regards,

Sandy

Or Tsemah's avatar
Or Tsemah
Former Employee
Jan 27, 2021

SandyMc 

Thanks for those suggestion, these are indeed items that we would like to see in the report and we are actively working on making these happen, I'll share an ETA when i have on

  • PELADANISHAGRO's avatar
    PELADANISHAGRO
    Copper Contributor
    Aug 17, 2021
    Any ETA on this? Could be a good help for us
    • Or Tsemah's avatar
      Or Tsemah
      Former Employee
      Aug 17, 2021

      PELADANISHAGRO No ETA regarding the added columns, however, tombstoned devices should already be excluded, ping me if they are not