ADQuery 2.0.1.0020 jp
はじめに:ADQuery
Download Location
This content is available at: https://content.tanium.com/files/published/ADQuery/2018-01-23_11-27-55_2.0.1.0020-g5e7f40c/ADQuery.xml
Usage
Questions
AD Query - All Windows
Get Is Windows from all machines
AD Query - Has Stale Computer Results
Get AD Query - Has Stale Results[Computer, 4] from all machines with AD Query - Has Stale Results[Computer, 4] containing "True"
Packages:
AD Query - Has Stale Local Administrator Results
Get AD Query - Has Stale Results[Admin, 4] from all machines with AD Query - Has Stale Results[Admin, 4] containing "True"
Packages:
AD Query - Has Stale Results
Get Target from all machines with ( AD Query - Has Stale Results[Computer, 4] containing "True" or AD Query - Has Stale Results[User, 4] containing "True" or AD Query - Has Stale Results[Admin, 4] containing "True" )
Packages:
AD Query - Has Stale User Results
Get AD Query - Has Stale Results[User, 4] from all machines with AD Query - Has Stale Results[User, 4] containing "True"
Packages:
Packages
Collect Active Directory Info
This package contains 1 files and 0 sensors.
Additional Properties:
- Command Line: cmd /c cscript //T:300 collectAdInfo.vbs "$1" "$2" "$3"
- Command Line Timeout: 300
Prompts:
| Name / Value | Prompt Help | Type | Possible / Default Values |
|---|---|---|---|
| Collect Computer Attributes | Checkbox | Disabled | |
| Collect User Attributes | Checkbox | Disabled | |
| Collect Local Group Memberships | Checkbox | Disabled |
Files:
- collectAdInfo.vbs
Sensors
AD Query - Logged In User Details
Returns details for the current logged on Active Directory user. Dependent on the AD Query content pack.
Columns
Name Type Description Name Text Department Text Country Text City Text Text Phone Number Text
AD Query - Computer Groups
Returns Active Directory group membership for the computer. Dependent on the AD Query content pack. Does not include nested groups.
AD Query - Local Groups
Returns the names of all local groups. No group members are returned. Dependent on the AD Query content pack.
AD Query - Primary User Groups
Returns Active Directory group membership for the primary user. Dependent on the AD Query content pack. Does not include nested groups.
AD Query - Local Group Membership
Returns local groups and their members. To return all groups, specify All. Input accepts a single group name, or a comma delimited list of multiple names. Dependent on the AD Query content pack.
Columns
Name Type Description Group Text Member Text Location Text Type Text Parameters
Name Description Type Possible / Default Values Groups Group(s) Text Administrators
AD Query - Primary User Details
Returns details for the primary user based on the number of interactive logon events. Dependent on the AD Query content pack.
Columns
Name Type Description Name Text Department Text Country Text City Text Text Phone Number Text
AD Query - Primary User
Returns the primary user based on the number of interactive logon events. Dependent on the AD Query content pack.
AD Query - User Attributes
Returns specified Active Directory attributes for the desired Active Directory user. Dependent on the AD Query content pack.
Parameters
Name Description Type Possible / Default Values strUser Active Directory Username Text strAttr Active Directory Attribute Text
AD Query - Local Administrators
Returns users and groups that are a member of the local administrators group. Dependent on the AD Query content pack.
Columns
Name Type Description Name Text Location Text Type Text
AD Query - Has Stale Results
Returns True/False value based on the time the AD Query XML files were generated and a time period the Active Directory data should be considered stale.
Parameters
Name Description Type Possible / Default Values type AD Data Type Selection Computer
User
Groups
intHours Hours Old Numeric
AD Query - Computer Attributes
Returns specified Active Directory attribute from the computers Active Directory object. Dependent on the AD Query content pack.
Parameters
Name Description Type Possible / Default Values strAttr Active Directory Attribute Text
AD Query - Logged In User Groups
Returns Active Directory group membership for the logged in user. Dependent on the AD Query content pack. Does not include nested groups.
Actions
Deploy Collect Active Directory Info
Packages: