TestimoX

API Reference

Class

RodcSysvolWriteService

Edit on GitHub
Namespace ADPlayground.DomainControllers
Assembly ADPlayground
Source ADPlayground/DomainControllers/RodcSysvolWriteService.cs:64
Modifiers static

Detects Read‑Only Domain Controllers (RODC) with write permissions on the GPO container (Policies) in AD. RODCs should not have write access to SYSVOL/Policies equivalent objects.

Inheritance

  • Object
  • RodcSysvolWriteService

Methods

public static View Evaluate(String domainName, String domainDn = null) #
ADPlayground/DomainControllers/RodcSysvolWriteService.cs:64
Returns: View

Checks whether any Read‑Only Domain Controllers have write permissions on the Policies container.

Parameters

domainName System.String requiredposition: 0
DNS domain name.
domainDn System.String = null optionalposition: 1
Optional domain DN override; when null the computed domain NC is used.

Returns

View with total RODCs, finding count, and detailed items.