Analysing active directory users and computers

Hi There, I am looking to analyse active directory users and computers in elastic and wondered if anyone has done this before and able to offer some guidance.

What I am looking to achieve is report on the total number of users, enabled/disabled users, users with password set to never expire etc.

I thought about using powershell to export the information and ingest it into log stash using the import date as the index. I would then pull a dashboard together to give near realtime status on these metrics.

Any help appreciated.

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.