Entity Panel | Database | Directory | Description |
Object ID | objectid | objectGUID | The object’s unique identifier in the directory. |
ACL Inheritance Denied | isaclprotected | nTSecurityDescriptor | Whether inherited permissions (ACEs) from containers are blocked on this object. |
Basic Constraint Path Length | basicconstraintpathlength | caCertificate (X509Certificate) | The maximum number of non-self-issued intermediate certificates that may follow this certificate in a valid certificate chain. |
Certificate Chain | certchain | caCertificate (X509Certificate) | A hierarchical list of certificates starting with the certificate for this CA and ending with a self-signed root certificate. Each certificate is signed by the private key of the next CA certificate. |
Certificate Name | certname | caCertificate (X509Certificate) | The name of the CA’s certificate. |
Certificate Thumbprint | certthumbprint | caCertificate (X509Certificate) | The thumbprint (unique identifier) of the CA’s certificate. |
Created | whencreated | whenCreated | When the object was created in the directory. |
Distinguished Name | distinguishedname | distinguishedName | The name of the object and it’s location in AD. |
Domain FQDN | domain | - | The fully qualified domain name (FQDN) of the domain the object belongs to. |
Domain SID | domainsid | - | The SID of the domain the object belongs to. |
Has Basic Constraints | hasbasicconstraints | caCertificate (X509Certificate) | Whether the CA certificate has basic constraints. |
Last Collected by BloodHound | lastcollected | - | The most recent time the object was collected and ingested in BloodHound. |
Last Seen by BloodHound | lastseen | - | The most recent time the object or a reference to it was collected and ingested in BloodHound. |
- | name | name + domain name | Name of the object + @ + the name of the domain. |
Edge type | Entity panel category |
EnterpriseCAFor | - |
GenericAll | Inbound Object Control |
GenericWrite | Inbound Object Control |
IssuedSignedBy | - |
Owns | Inbound Object Control |
WriteDacl | Inbound Object Control |
WriteOwner | Inbound Object Control |
Edge type | Entity panel category |
RootCAFor | - |