Microsoft Entra Joined Configuration (Windows)

info Nessus Plugin ID 177646

Synopsis

The host is Microsoft Entra Joined (MEJ) or Hybrid Microsoft Entra Joined (HEJ)

Description

The host is Microsoft Entra Joined (MEJ), previously known as Azure AD Joined (AADJ), or Microsoft Entra Hybrid Joined (MEHJ), previously known as Hybrid Azure AD Joined (HAADJ), and it was possible to retrieve certain Microsoft Entra device configuration attributes, including:

- Microsoft Entra tenant ID
- Microsoft Entra tenant display name
- Microsoft Entra IdP domain
- Microsoft Entra device ID
- Microsoft Entra join type (Microsoft Entra Joined / Microsoft Entra Hybrid Joined)
- Joining user’s UPN
- Joining user's account
- User sign-in method
- Password writeback enabled
- User writeback enabled
- Group writeback enabled

For Active Directory domain information, especially if the host is Microsoft Entra Hybrid Joined (MEHJ), see the 'Host Active Directory Configuration (Windows)' plugin.

For Microsoft Entra Register information, see the 'Microsoft Entra Registered Configuration (Windows)' plugin.

See Also

https://learn.microsoft.com/en-us/azure/active-directory/devices/

http://www.nessus.org/u?835b6f03

http://www.nessus.org/u?c4db352d

Plugin Details

Severity: Info

ID: 177646

File Name: azure_ad_joined_config.nbin

Version: 1.83

Type: local

Agent: windows

Family: Windows

Published: 7/13/2023

Updated: 12/17/2024

Asset Inventory: true

Supported Sensors: Nessus Agent, Nessus

Vulnerability Information

CPE: x-cpe:/a:microsoft:azure_active_directory, x-cpe:/a:microsoft:entra_id

Required KB Items: SMB/Registry/Enumerated, SMB/WMI/Available