This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Lansweeper Community
- Forums
- Reports & Analytics
- Unauthorized local admin report
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎04-17-2018 03:15 PM
Hello,
Trying to find out if the unauthorized local admin report can identify or label if the account is a user or group?
I'm pretty sure Windows knows the difference because it uses different icons when you're viewing the local admins group, but I don't know if Lansweeper can tell or is tracking that information.
Thanks.
Trying to find out if the unauthorized local admin report can identify or label if the account is a user or group?
I'm pretty sure Windows knows the difference because it uses different icons when you're viewing the local admins group, but I don't know if Lansweeper can tell or is tracking that information.
Thanks.
Labels:
- Labels:
-
Report Center
1 REPLY 1
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎04-20-2018 09:58 AM
This question was also asked via email, I've added my reply below for everyone else's benefit.
The report you're describing is possible, we've added a modified version of the Unauthorized administrators report below that includes a column indicating whether the account in question is a group or a user. Do note that to ensure the accuracy of the report you'll need to have successfully scanned all relevant domains using Active Directory User/Group scanning: https://www.lansweeper.com/kb/131/scanning-with-domain-user-scanning.html
Select Top 1000000 tsysOS.Image As icon,
tblAssets.AssetID,
tblAssets.AssetName,
tblUsersInGroup.Domainname,
tblUsersInGroup.Username,
Case
When tblUsersInGroup.Username = tblADGroups.Name Then 'Group'
Else 'User'
End As [User Or Group],
tblUsersInGroup.Lastchanged,
tblAssets.Domain,
tblAssets.IPAddress,
tblAssets.Description,
tblAssetCustom.Manufacturer,
tblAssetCustom.Model,
tblAssetCustom.Location,
tsysIPLocations.IPLocation,
tsysOS.OSname As OS,
tblAssets.SP As SP,
tblAssets.Firstseen,
tblAssets.Lastseen
From tblUsersInGroup
Inner Join tblAssets On tblUsersInGroup.AssetID = tblAssets.AssetID
Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
Inner Join tsysOS On tblAssets.OScode = tsysOS.OScode
Left Join tsysIPLocations On tsysIPLocations.StartIP <= tblAssets.IPNumeric
And tsysIPLocations.EndIP >= tblAssets.IPNumeric
Left Join tblADGroups On tblADGroups.Name = tblUsersInGroup.Username
Where Not Exists(Select tblAssets.AssetName As Domain,
tblUsers.Name As Username
From tblAssets Inner Join tblUsers On tblAssets.AssetID = tblUsers.AssetID
Where tblUsers.BuildInAdmin = 1 And tblUsersInGroup.Domainname =
tblAssets.AssetName And tblUsersInGroup.Username = tblUsers.Name) And
Not Exists(Select tsysadmins.Domain,
tsysadmins.AdminName As username From tsysadmins
Where tblUsersInGroup.Domainname Like tsysadmins.Domain And
tblUsersInGroup.Username Like tsysadmins.AdminName) And
tblUsersInGroup.Admingroup = 1 And tblAssetCustom.State = 1
Order By tblAssets.AssetName
New to Lansweeper?
Try Lansweeper For Free
Experience Lansweeper with your own data. Sign up now for a 14-day free trial.
Try Now
Related Content
- showing empty entries on reports in General Discussions
- Query if current logged user is a local admin in Reports & Analytics
- Report Process: Hacker's or admin's tools in Reports & Analytics
- Google Chrome installation location in Reports & Analytics
- Truth or Dare - share your Custom Fields for Lansweeper Classic in General Discussions
