- All security groups
This report lets you identify and document the list of all security groups in an Active Directory domain, container or organizational unit.
It can also enumerate the identities of all the members of each security group, in the form of a ready-to-furnish report.
- All direct members of a security group
This report lets you identify and document the list of all direct (immediate) members of any specified security group in an Active Directory domain, container or organizational unit.
The report also displays the identity and the type (i.e. User Account, Computer Account, Security Group) of each member of the security group, and it lets you filter the results by type.
It can further enumerate the membership of all the members of all groups that are direct members of the specified security group, in the form of a ready-to-furnish report.
- All (direct and nested) members of a security group*
This report lets you identify and document the complete expanded list of all direct (immediate) as well as indirect (nested) members of any specified security group in an Active Directory domain, container or organizational unit.
The report also displays the identity and the type (i.e. User Account, Computer Account, Security Group) of each direct and nested member of the security group, and it lets you filter the results by type.
These nested group membership reports include all pertinent factors involved in nested group expansion and are 100% accurate.
You can also instantly generate a customized, printable, ready-to-furnish report that documents the identity and description of all the nested members of a security group.
- All built-in security groups
This report lets you identify and document the list of all Builtin security groups in an Active Directory domain, container or organizational unit, and the number of members contained in each security group.
It can also enumerate the identities of all the members of each security group, in the form of a ready-to-furnish report.
- All domain local security groups
This report lets you identify and document the list of all Domain Local security groups in an Active Directory domain, container or organizational unit, and the number of members contained in each security group.
It can also enumerate the identities of all the members of each security group, in the form of a ready-to-furnish report.
- All global security groups
This report lets you identify and document the list of all Global security groups in an Active Directory domain, container or organizational unit, and the number of members contained in each security group.
It can also enumerate the identities of all the members of each security group, in the form of a ready-to-furnish report.
- All universal security groups
This report lets you identify and document the list of all Universal security groups in an Active Directory domain, container or organizational unit, and the number of members contained in each security group.
It can also enumerate the identities of all the members of each security group, in the form of a ready-to-furnish report.
- All privileged security groups
This report lets you identify and document the list of all privileged security groups in an Active Directory domain, container or organizational unit.
A privileged security group is one that has elevated privileges in the Active Directory, and whose members, for all practical purposes are as powerful as Domain Admins.
It can also enumerate the identities of all the members of each security group, in the form of a ready-to-furnish report.
- All nested security groups
This report lets you identify and document the list of all nested security groups in an Active Directory domain, container or organizational unit.
A nested security group is one that is a member of at least one other security group. Consequently, its members also have all rights/privileges that are granted to the group to which this group belongs.
It can also enumerate the identities of all the members of each security group, in the form of a ready-to-furnish report.
- All security groups created in the last few days
This report lets you identify and document the list of all security groups in an Active Directory domain, container or organizational unit, that were created in the last few (specifiable, 0 – 365) days.
It can also enumerate the identities of all the members of each security group, in the form of a ready-to-furnish report.
- All security groups changed in the last few days
This report lets you identify and document the list of all security groups in an Active Directory domain, container or organizational unit, that were modified in the last few (specifiable, 0 – 365) days.
It can also enumerate the identities of all the members of each security group, in the form of a ready-to-furnish report.
- All groups deleted in the last few days
This report lets you identify and document the list of all security groups in an Active Directory domain, container or organizational unit, that were deleted in the last few (specifiable, 0 – 60) days.
- All security groups that have members
This report lets you identify and document the list of all security groups in an Active Directory domain, container or organizational unit, that have at least one member.
It can also enumerate the identities of all the members of each security group, in the form of a ready-to-furnish report.
- All security groups that have no members
This report lets you identify and document the list of all empty security groups in an Active Directory domain, container or organizational unit.
The report also displays the Type of each security group (i.e. Builtin, Domain Local, Global or Universal.)
- All security groups for which a manager is not specified
This report lets you identify and document the list of all security groups in an Active Directory domain, container or organizational unit, for which no manager is specified.
An Active Directory group for which a manager is specified is generally regarded as an unmanaged security group.
It can also enumerate the identities of all the members of each security group, in the form of a ready-to-furnish report.
- All security groups for which a description is not specified
This report lets you identify and document the list of all security groups in an Active Directory domain, container or organizational unit, for which no description is specified.
The likelihood of the accidental misuse of an Active Directory group is substantially higher for groups that do not have a description that communicates the intended purpose/basis of the group.
It can also enumerate the identities of all the members of each security group, in the form of a ready-to-furnish report.
In addition Gold Finger also offers the following 4 general domain security group management reports –
Gold Finger automatically displays the Scope (i.e. Builtin, Domain Local, Global or Universal) and the Membership-Count of each security group. It can also list the Members of all security groups for each report.
