search

netwrix / pingcastle

PingCastle - Get Active Directory Security at 80% in 20% of the time
https://www.pingcastle.com
Other
2.36k stars 293 forks source link

S-DC-SubnetMissing #151

Closed dnsinit closed 2 years ago

dnsinit commented 2 years ago

The rule S-DC-SubnetMissing is warning for missing declared subnets even in single site topology ADs causing unnecessary noise.

vletoux commented 2 years ago

You are missing the big picture When you have multiple domains you want to consolidate having the ip range defined help building the map (checkout the Hilbert report) That’s why we require it even for single site

dnsinit commented 2 years ago

Sorry, I meant in a single site and single domain topology it’s not necessary (only adds complexity).