| # | Report | Type |
| User Account Management Reports |
| 1. | List of all domain user accounts | Security Report |
| 2. | List of all recently commissioned domain user accounts
(i.e. accounts that were created in the last 30 days) | Security Report |
| 3. | List of all recently de-commissioned domain user accounts
(i.e. accounts that were deleted in the last 30 days) | Security Report |
| 4. | List of all active domain user accounts
(i.e. accounts that have logged on at least once in the last 180 days) | Security Report |
| 5. | List of all inactive domain user accounts
(i.e. accounts that have not logged on even once in the last 180 days) | Security Report |
| 6. | List of all unused domain user accounts
(i.e. accounts that have never logged on) | Security Report |
| 7. | List of all disabled domain user accounts | Security Report |
| 8. | List of all privileged domain user accounts
(i.e. accounts that possess administrative privilege) | Security Report |
| 9. | List of all domain user accounts that do not have an expiration date | Security Report |
| 10. | List of all domain user accounts that do not require passwords to logon | Security Report |
|
|
| 11. | List of all domain user accounts whose passwords never expire | Security Report |
| 12. | List of all domain user accounts whose passwords have not changed in the last 60 days | Security Report |
| 13. | List of all domain user accounts that are sensitive and cannot be delegated | Security Report |
| 14. | List of all domain user accounts whose password might be too old
(i.e. accounts who password has not changed in the last 60 days) | Security Report |
| 15. | List of all unmanaged domain user accounts
(i.e. accounts for whom a manager is not specified) | Security Report |
| 16. | Individuals who can create domain user accounts | Access Report |
| 17. | Individuals who can delete domain user accounts | Access Report |
| 18. | Individuals who can reset user account passwords | Access Report |
| 19. | Individuals who can disable (and enable disabled) user accounts | Access Report |
| 20. | Individuals who can unlock user accounts | Access Report |
|
|
| Computer Management Reports |
| 21. | List of all domain computer accounts | Security Report |
| 22. | List of all recently commissioned domain computer accounts
(i.e. computer accounts created in the last 30 days) | Security Report |
| 23. | List of all recently de-commissioned domain computer accounts
(i.e. computer accounts deleted in the last 30 days) | Security Report |
| 24. | List of all active domain computer accounts
(i.e. accounts that have logged on at least once in the last 180 days) | Security Report |
| 25. | List of all inactive domain computer accounts
(i.e. accounts that have not logged on even once in the last 180 days) | Security Report |
| 26. | List of all disabled domain computer accounts | Security Report |
| 27. | List of all domain computer accounts that are trusted for unconstrained delegation | Security Report |
| 28. | List of all unmanaged domain computer accounts
(i.e. accounts for whom a manager is not specified) | Security Report |
|
|
| Security Group Management Reports |
| 29. | List of all security groups (and their type i.e. domain local, global etc.) | Security Report |
| 30. | List of all administrative security groups (e.g. Enterprise Admins etc.) | Security Report |
| 31. | List of all delegated administrative security groups
(e.g. groups used to delegate IT management in Active Directory) | Security Report |
| 32. | List of all recently commissioned security groups
(i.e. groups created in the last 30 days) | Security Report |
| 33. | List of all recently decommissioned security groups
(i.e. groups deleted in the last 30 days) | Security Report |
| 34. | List of all empty security groups (i.e. groups that have no members) | Security Report |
| 35. | List of all large security groups (i.e. groups that have a large membership) | Security Report |
| 36. | List of all nested security groups (i.e. groups that have groups as members) | Security Report |
| 37. | List of all unmanaged security groups (i.e. for which manager is not specified) | Security Report |
| 38. | Individuals who can create security groups | Access Report |
| 39. | Individuals who can delete security groups | Access Report |
| 40. | Individuals who can modify security group memberships | Access Report |
| 41. | Individuals who can modify security group scopes | Access Report |
| 42. | Individuals who can modify security group types | Access Report |
|
|
| Organizational Unit and Container Management Reports |
| 43. | List of all organizational units (OUs) and containers | Security Report |
| 44. | List of all recently commissioned OUs and containers
(i.e. those that were created in the last 30 days) | Security Report |
| 45. | List of all recently de-commissioned OUs and containers
(i.e. those that were deleted in the last 30 days) | Security Report |
| 46. | List of all unmanaged OUs and containers
(i.e. for which a manager is not specified) | Security Report |
| 47. | List of all OUs to which a group policy (GPO) is explicitly linked | Security Report |
| 48. | Individuals who can create organizational units | Access Report |
| 49. | Individuals who can delete organizational units | Access Report |
| 50. | Individuals who can disable group policies (GPO) linked to OUs, or change the list or precedence of GPOs linked to OUs | Access Report |
