MOCKUP — U - Admin Access · Phase 1 — future · security · audit · Follow REPORT-DESIGN-SPEC.md in Power BI Desktop to build this
Cq Claritiq · U - Admin Access Refreshed today
Critical Caution Healthy · target
Scope: eni.enigron.com · c1.eni.enigron.com
Total Privileged Users
52
across 7 admin groups
Enabled Privileged
47
5 disabled but still in groups
Kerberoastable Admins
3
SPN + admin group
Admins w/ PwdNoExpiry
12
No rotation clock
Admins w/ Mailbox
38
Tier-0 hygiene gap
New Admins (30d)
1
persistence-TTP signal
Privileged group membership
GroupEnabledDisabledMembers
Domain Admins82
10
Enterprise Admins31
4
Schema Admins20
2
Account Operators121
13
Server Operators81
9
Backup Operators90
9
Print Operators50
5
Security findings on privileged accounts
FindingCount
Admin with mailbox (Tier-0 hygiene)
38
Admin with PwdNoExpiry
12
Admin stale 90+ days
9
Admin password > 180d old
7
Disabled but still in admin group
5
Kerberoastable admin (SPN set)
3
Admin without Kerberos pre-auth
2
Recently created (30d)
1
Cross-filter: click a finding row to see which admins trigger it in the detail table below.
Quick views
Privileged users — full roster with finding flags Showing 8 of 52 · Sorted by Groups (most-privileged first)
Display NameUPNSAMAdmin GroupsDomainDisabledPwd Last SetAD Last LogonFindings
admin-jkentadmin-jkent@contoso.comadmin-jkentDomain AdminsCONTOSO.COMNo2025-09-142026-04-08PwdNoExpiry
admin-rkumaradmin-rkumar@contoso.comadmin-rkumarDomain Admins, Schema AdminsCONTOSO.COMNo2024-11-032026-04-07Pwd > 180d
svc-backup-sqlsvc-backup-sql@contoso.comsvc-backup-sqlBackup OperatorsCONTOSO.COMNo2019-04-222026-04-08KerberoastablePwdNoExpiryPwd > 180d
Sarah Williamssarah.williams@contoso.comswilliamsAccount OperatorsCONTOSO.COMNo2026-01-142026-04-08Admin w/ mailbox
admin-tchen-newadmin-tchen-new@contoso.comadmin-tchen-newDomain AdminsCONTOSO.COMNo2026-04-082026-04-08Created < 30d
admin-jmiller-oldadmin-jmiller-old@contoso.comadmin-jmiller-oldServer OperatorsCONTOSO.COMYes2023-07-182024-02-14Disabled + in group
svc-print-srvsvc-print-srv@contoso.comsvc-print-srvPrint OperatorsEMEA.CONTOSO.COMNo2018-08-012026-04-08KerberoastablePwdNoExpiry
admin-stale-jpadmin-stale-jp@contoso.comadmin-stale-jpAccount OperatorsAPAC.CONTOSO.COMNo2024-02-182025-11-04Stale 90+