MOCKUP — Audit Pack · Phase 1 — future · audit · security · Follow REPORT-DESIGN-SPEC.md in Power BI Desktop to build this
Cq Claritiq · Audit Pack Refreshed today
Critical Caution Healthy · target
Scope: eni.enigron.com · c1.eni.enigron.com
Report Period
Q2 2026
Apr 1 – Jun 30
Total Enabled Accounts
966
+12 vs Q1
Privileged Accounts
47
+2 net (+3 added, -1 removed)
Stale Enabled (90+)
247
point-in-time snapshot
Critical Findings
0
zero PASSWD_NOTREQD
Audit-Ready
Yes
all controls passing
Control attestation summary
ControlExpectedObservedStatus
AC-01: Privileged access reviewed quarterlyYesYes (2026-04-01)Pass
AC-02: Stale accounts disabled within 90 days0 violations0Pass
AC-03: No PASSWD_NOTREQD on privileged00Pass
AC-04: No unconstrained delegation on users00Pass
AC-05: Admin accounts in Protected Users100%89%Partial
AC-06: krbtgt password rotated annually< 365d287dPass
AC-07: Disabled users removed from admin groups100%95%Partial
AC-08: Mailbox retention enforced100%98%Partial
6 passing, 3 partial, 0 failing. Partial controls need remediation plans attached in Appendix B.
Point-in-time evidence summary
MetricCurrentSeverity
Enabled users966
Disabled users (total in AD)196
Stale 90+ accounts (enabled)247
Stale 180+ accounts (enabled)143
Never-logged-in enabled38
Privileged users (active)47
Kerberoastable admins3
PASSWD_NOTREQD set4
Workaround-provisioned89
Snapshot data, refreshed daily. Quarter-over-quarter trend lines arrive in Phase 4 (Historical Trends — BACKLOG F.13). For real-time change tracking on privileged accounts, see Phase 3 Sentinel integration (BACKLOG F.11).
Quick views
Privileged access roster snapshot (2026-04-24) Showing 8 of 47 · Sorted by Group, User
UserUPNAdmin GroupsSinceLast LogonReview Status
admin-jkentadmin-jkent@contoso.comDomain Admins, Enterprise Admins2019-03-042026-04-24Reviewed Q2
admin-rkumaradmin-rkumar@contoso.comDomain Admins, Schema Admins2020-08-172026-04-23Reviewed Q2
admin-tchen-newadmin-tchen-new@contoso.comDomain Admins2026-04-082026-04-24Added Q2
Sarah Williamssarah.williams@contoso.comAccount Operators2021-09-142026-04-24Reviewed Q2
svc-backup-sqlsvc-backup-sql@contoso.comBackup Operators2019-04-222026-04-24Reviewed Q2
hdesk-akhalilhdesk-akhalil@contoso.comAccount Operators2026-01-282026-04-24Added Q2
admin-retired-jmadmin-retired-jm@contoso.comAccount Operators2018-05-142025-11-22Removed Q2
admin-jmiller-oldadmin-jmiller-old@contoso.comServer Operators2018-02-112025-08-14Flagged — disabled