Windows Admin Users Compliance Status - superseded
| 0 Votes |
Versioning - This is an older version.
| 1 | Windows Admin Users Compliance Status | 9/15/2018 9:15:36 PM |
| 2 | Windows Admin Users Compliance Status | 9/17/2018 9:29:14 PM |
Description
Property Details
| 2998596 | |
| Beta - Preliminary testing ready for more | |
| Windows Admin Users Compliance Status | |
| BESC | |
| Manage Local Windows Administrators | |
| mxc0bbn on 9/15/2018 9:15:36 PM | |
| mxc0bbn on 9/15/2018 9:15:36 PM | |
| 2408 Views / 2 Downloads | |
* Average over 0 ratings.
** Log In or Register to add your rating.
|
Properties
Status
Period
Every Report
| * Results in a true/false |
if exists file (parent folder of regapp "besclient.exe" as string & "\ComplianceWhitelist\ComplianceWhitelist.txt") then if number of (elements of (set of ((following texts of firsts "\" of unique values of ((members of local group "Administrators") as string) as lowercase)) - set of (unique values of (lines of file (parent folder of regapp "besclient.exe" as string & "\ComplianceWhitelist\ComplianceWhitelist.txt"))))) = 0 then "Compliant" else "Not-Compliant" else "No Compliance Whitelist on Endpoint"
Unauthorized Admins
Period
Every Report
| * Results in a true/false |
if exists file (parent folder of regapp "besclient.exe" as string & "\ComplianceWhitelist\ComplianceWhitelist.txt") then "[" & concatenation "] - [" of (elements of (set of ((following texts of firsts "\" of unique values of ((members of local group "Administrators") as string) as lowercase)) - set of (unique values of (lines of file (parent folder of regapp "besclient.exe" as string & "\ComplianceWhitelist\ComplianceWhitelist.txt"))))) & "]" else "No Compliance Whitelist on Endpoint"
Whitelist Files Match
Period
Every Report
| * Results in a true/false |
if exists file (((data folder of client) as string) & "\__Global\__Download\actionsite\_listbackup.txt") then if exists file ((parent folder of regapp "BESClient.exe" as string) & "\ComplianceWhitelist\ComplianceWhitelist.txt") then (sha1 of file (((data folder of client) as string) & "\__Global\__Download\actionsite\_listbackup.txt") = sha1 of file ((parent folder of regapp "BESClient.exe" as string) & "\ComplianceWhitelist\ComplianceWhitelist.txt")) as string else "Primary Whitelist File Missing" else "Whitelist Backup File Missing"
Backup File hash
Period
Every Report
| * Results in a true/false |
if exists file (((data folder of client) as string) & "\__Global\__Download\actionsite\_listbackup.txt") then (sha1 of file (((data folder of client) as string) & "\__Global\__Download\actionsite\_listbackup.txt")) else "Backup Whitelist File Missing"
Primary File hash
Period
Every Report
| * Results in a true/false |
if exists file ((parent folder of regapp "BESClient.exe" as string) & "\ComplianceWhitelist\ComplianceWhitelist.txt") then sha1 of file ((parent folder of regapp "BESClient.exe" as string) & "\ComplianceWhitelist\ComplianceWhitelist.txt") else "Primary Whitelist File Missing"
Primary File Date
Period
Every Report
| * Results in a true/false |
if exists file ((parent folder of regapp "BESClient.exe" as string) & "\ComplianceWhitelist\ComplianceWhitelist.txt") then (modification time of file ((parent folder of regapp "BESClient.exe" as string) & "\ComplianceWhitelist\ComplianceWhitelist.txt")) as string else "Primary Whitelist File Missing"
Backup File Date
Period
Every Report
| * Results in a true/false |
if exists file (((data folder of client) as string) & "\__Global\__Download\actionsite\_listbackup.txt") then (modification time of file (((data folder of client) as string) & "\__Global\__Download\actionsite\_listbackup.txt")) as string else "Backup Whitelist File Missing"
Name/Pwd Age of Admins
Period
Every Report
| * Results in a true/false |
"[" & concatenation "] - [" of (((names of it, password age of it) of users whose (admin privilege of it as string contains "True")) as string) & "]"
Relevance
Sharing
| Social Media: |
