Active Directory Group and Active Directory Local User inspectors

Content Authoring
1

(imported topic written by Bill.Ehardt)

From the v8.1 changelog…

Added active directory group and user user inspectors

In QNA I see this:

q: types whose (name of it contains “active directory”)

A: active directory group

A: active directory local computer

A: active directory local user

A: active directory server

But… I see no documentation anywhere on what the “Active Directory Group” or “Active Directory Local User” inspectors do. Not in any new windows inspectors files, not in the inspector search etc.

2

(imported comment written by Lee Wei)

In these situations where the documentation have yet to catch up with the modified relevance inspectors, we can use the following relevance to self introspect.

// Active Directory Group creation methods

q: properties whose (it as string contains “: active directory group”)

A: group of : active directory group

A: groups of : active directory group

A: group of : active directory group

A: groups of : active directory group

// Active Directory Group properties

q: properties whose (it as string contains “:”)

A: name of : string

A: distinguished name of : string

A: distinguished name error message of : string

A: sid of : security identifier

A: sample time of : time

// Active Directory Local User creation methods

q: properties whose (it as string contains “: active directory local user”)

A: local user of : active directory local user

A: logged on user of : active directory local user

A: local users of : active directory local user

A: logged on users of : active directory local user

A: active directory user of : active directory local user

// Active Directory Local User properties

q: properties whose (it as string contains “:”)

A: name of : string

A: distinguished name of : string

A: distinguished name error message of : string

A: groups error message of : string

A: sample time of : time

A: group of : active directory group

A: groups of : active directory group

Lee Wei

3

(imported comment written by cstoneba)

how could I pull back the AD groups that the client is a member of?

4

(imported comment written by JackCoates91)

Do you have the new software distribution? There’s an analysis that gathers groups and OUs. The group section is:

unique values of values of components whose (type of it="CN") of distinguished names (distinguished names of (groups of local computer of active directory;groups of local users of active directory))

That gets users and computers of course, so modify as necessary.

5

(imported comment written by cstoneba)

hmm, no results. No, i don’t have the new software distributuion, so I’m just trying it in QnA

6

(imported comment written by JackCoates91)

I don’t think they work in QnA, I think you need to use the client API tester… http://support.bigfix.com/labs/apitester.html

Could also be this: http://support.bigfix.com/cgi-bin/kbdirect.pl?id=1757

7

(imported comment written by cstoneba)

when I run it in the client API tester, I get “Error: The operator “relevant fixlets” is not defined.”