This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Community FAQ
Register | Log In
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Lansweeper Community
- Forums
- Reports & Analytics
- Active Directory Group Changes
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Register to ask a question, start a topic or share an idea
Join the Community
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-10-2023 05:24 PM
Hello everyone,
I'm looking to see if it's possible to report on changes in AD Groups. For example, a report that could be run daily if anyone is added or removed from the Domain Admin group showing the changes that happened.
Anyone have ideas?
Labels:
- Labels:
-
Report Center
3 REPLIES 3
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-12-2023 01:37 PM
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-07-2023 12:32 PM
@RandyCosta please Accept as Solution if this response from @CyberCitizen worked
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-13-2023 06:20 AM
I have this setup as a scheduled report run on Monday mornings. Basically we have a bypass group we use for Multi Factor. When setting up a new user we chuck them in this group but we don't want to forget about it, so once a week this emails the our service desk queue if there an any entries so we can remove them.
Select Top 1000000 tblADusers.Username,
tblADusers.Firstname,
tblADusers.Lastname,
tblADGroups.Name As ADGroupName,
Case tblADGroups.GroupType
When -2147483646 Then 'Security - Global'
When -2147483644 Then 'Security - Local'
When -2147483643 Then 'Built-in'
When -2147483640 Then 'Security - Universal'
When 2 Then 'Distribution - Global'
When 4 Then 'Distribution - Local'
When 8 Then 'Distribution - Universal'
End As ADGroupType
From tblADusers
Left Join tblADMembership On tblADMembership.ChildAdObjectID =
tblADusers.ADObjectID
Left Join tblADGroups On tblADMembership.ParentAdObjectID =
tblADGroups.ADObjectID
Where tblADusers.Username Not Like 'svc%' And tblADusers.Username Not Like
'EMERGENCYACCT' And tblADGroups.Name Like 'Azure-MFA-Bypass'
Order By tblADusers.Userdomain,
tblADusers.Username,
ADGroupName
Reports & Analytics
Ask about reports you're interested in and share reports you've created. Subscribe to receive daily updates of reports shared in the Community.
New to Lansweeper?
Try Lansweeper For Free
Experience Lansweeper with your own data. Sign up now for a 14-day free trial.
Try Now
Related Content
- How do you view only Active assets in the onpremises Lansweeper app in General Discussions
- use report's data during deployment in Deployment Packages
- cat: /etc/subversion: Is a directory in General Discussions
- Lansweeper Not Detecting All Network Devices in General Discussions
- configure "non-active" when it does not respond to ping and also the agent does not work in General Discussions
