Hi There, I am looking to analyse active directory users and computers in elastic and wondered if anyone has done this before and able to offer some guidance.
What I am looking to achieve is report on the total number of users, enabled/disabled users, users with password set to never expire etc.
I thought about using powershell to export the information and ingest it into log stash using the import date as the index. I would then pull a dashboard together to give near realtime status on these metrics.
Any help appreciated.