We want to be able to create a general policy to notify us when a non-admin AD account (admin accounts are delineated by SAMAccountName) is added to a local admin AD group. We can’t figure out how to create a Search that queries account level data like SAMAccountName, is that possible? We don’t only want to be able to query account level data, we also want to return it, is that possible?
You can map the account attribute to an Identity Attribute and then use that, now that it is indexed for search. Then use that Identity Attribute in a saved search or workflow to send the notification.
1 Like
@pillar224 you can use @access(“name of ad group”) to fetch all the users who have been added in that group. Also along with that you can also try using native change detection concept
I think this is probably the best solution for us since we want to be able to see sAMAccountName as a column in the return. Thank you sir
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.