Comments (4)
Running this in powershell is telling me the machines that have old password changes. Ping castle is not showing this list however so you don't know where it gets the number it's showing.
get-adcomputer -filter * -properties passwordlastset | select name, passwordlastset | sort passwordlastset
from pingcastle.
You need to be more precise because i don't understand what the issue is.
I remind that there is filter to exclude disable accounts, and a logic to remove computers which are no longer used (typically using the lastlogontimestamp)
Here is the code:
https://github.com/vletoux/pingcastle/blob/master/Healthcheck/HealthcheckAnalyzer.cs#L731-L743
from pingcastle.
If you need to discuss about specifics, you can email at support at pingcastle dot com
from pingcastle.
We were able to fix the issue by running that power shell command that showed us last computer password set and seeing the old entries. PingCastle stated there were computers that had old password last set but never showed us those exact names of computers.
from pingcastle.
Related Issues (20)
- Broken hyperlinks in AD report HOT 1
- Add descriptive text and fix colour for MSV1_0\RestrictSendingNTLMTraffic HOT 1
- Incorrect "no applicable GPO found" detections for GPO security settings HOT 1
- Idea: Check for correct functioning of trust scanner for AD trusts HOT 9
- P-ProtectedUsers and MSA/gMSA HOT 2
- Rule S-ADRegistration wont trigger if the "ms-DS-MachineAccountQuota" is not set, but adding computers is possible.
- Pingcastle crash, probably new RPC tests
- Bug: Wrong --foreigndomain parameter ignored
- Increase points for "Check if authentication certificate templates allow users to control the subject" ? HOT 1
- GPO from forest root domain doesn't seem to be detected at child domains
- GPO Group Member/Regestry/Preference with targeting
- DHCP Admin group
- Missing Vuln Cert Template check for Domain Computers
- Question regarding TrustedToAuthenticateForDelegation
- Cannot add multiple HoneyPot Exclusions with DistinguishedName
- runnning on AD Explorer snapshot
- Feature Request: Add flag to specify alternate output path
- Reported control path does not seem exploitable
- Example Report
- Bug: Certificate-based authentication (P12) with --azuread fails
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from pingcastle.