• State Suggested Answer
  • Replies 7 replies
  • Answers 1 answer
  • Subscribers 63 subscribers
  • Views 3124 views
  • Users 0 members are here
Options
Related

In Active Roles track who views LAPS password

whitet10
over 3 years ago

In Active Roles is there a way to track who can view the LAPS password attribute? We were looking way to audit who views the attribute ms-Mcs-AdmPwd. 

Parents
  • 0 over 3 years ago

    Hello, whitet10.

    There is no "out-of-the-box" feature to track this yet, but it is certainly within the realm of accessible configuration. Attached is a video demonstrating one possible means by which to implement this kind of solution. Hope you find it helpful!

    Cheers,
    Shawn.

  • 0 over 3 years ago in reply to Shawn.Ferrier

    What "Command Type" is that? I am trying to recreate what you did.

  • 0 over 3 years ago in reply to whitet10

    Looks like editing object properties.  Basically, you need something to trigger a workflow / policy script to pull the LAPS password value as Shawn did.  Within that set of actions, you can also audit who made the request.

  • 0 over 3 years ago in reply to whitet10

    The "command" is a standard "show form" command to display a form of my own creation.

Reply Children
No Data