icon-itdr.svg
ITDR

About the Active Directory Object Safelist

After you scan an Active Directory (AD) domain, the issues are listed under the Focus Area section on the Identity Posture dashboard. On the Focus Area page for an Active Directory (AD) issue, you can view the list of AD objects (user accounts and computers) that are vulnerable to attack. You can review these AD objects to confirm that they are not a risk and mark them as safe by adding them to the safelist.

Adding objects to the safelist impacts the unified risk score on the Identity Posture dashboard.

Active Directory Object safelist provides the following benefits and enables you to:

  • View the list of AD objects that doesn't pose a risk and are marked safe.
  • Reduce the unified risk score on the Identity Posture.

About the Active Directory Object Safelist Page

On the Active Directory Object Safelist (ITDR > Settings > Active Directory Object Safelist) page, you can do the following:

  1. Select an AD domain from the Result for drop-down menu.
  2. View the list of objects that are marked safe. For each object, you can view:
    • Name: The issue name.
    • Type: The object type (AD user or computer).
    • Associated Issue: The issue the object is associated with.
    • Created On: The date when the object was added to the safelist.
    • Created By: The name of the user who added the object to the safelist.
    • Reason: The reason why the object was added to the safelist.
  3. Delete an object from the safelist.
A screenshot capturing the Active Directory Object Safelist page
Related Articles
About the Active Directory Object SafelistAdding an Active Directory Object to the SafelistDeleting an Object from the Active Directory Object Safelist