API Reference
View (LapsPolicyService)
Aggregated Windows LAPS policy view with attribution.
Inheritance
- Object
- View
Constructors
public View() #Inherited Methods
Properties
public Boolean CollectionSucceeded { get; set; } #True when LAPS policy collection completed successfully.
public String CollectionError { get; set; } #Error details when collection fails; null when successful.
public String TargetDn { get; set; } #ResultMetadataTarget distinguished name (OU/Container) used for resolution.
public String ScopeType { get; set; } #ResultMetadataScope type derived from the target DN (Domain root / OU / Container / Site / DC OU).
public String TargetDisplay { get; set; } #ResultMetadataCanonical or display-friendly path for the target (DN and short form).
public Nullable<UInt32> BackupDirectory { get; set; } #BackupDirectory (1 = Active Directory).
public Nullable<UInt32> PasswordAgeDays { get; set; } #PasswordAgeDays.
public Nullable<UInt32> PasswordComplexity { get; set; } #PasswordComplexity.
public Nullable<UInt32> NoExtendExpiration { get; set; } #DoNotAllowPasswordExpirationTimeLongerThanRequiredByPolicy.
public Nullable<Boolean> BackupDsrmPassword { get; set; } #Enable backup of the DSRM account password to AD (Windows LAPS).
public Nullable<UInt32> PasswordLength { get; set; } #Password length for generated LAPS password.
public Nullable<Boolean> AdPasswordEncryptionEnabled { get; set; } #Enable encryption of LAPS passwords in AD.
public String AdPasswordEncryptionPrincipal { get; set; } #Security principal permitted to decrypt LAPS passwords.
public Nullable<UInt32> AdEncryptedPasswordHistorySize { get; set; } #Number of previous encrypted passwords to retain.
public Nullable<Boolean> PasswordExpirationProtectionEnabled { get; set; } #Protect against password expiration during maintenance windows.
public Nullable<Boolean> LegacyEnabled { get; set; } #Legacy LAPS policy enabled (AdmPwdEnabled = 1) under HKLM\\Software\\Policies\\Microsoft Services\\AdmPwd.
public Nullable<UInt32> LegacyPasswordAgeDays { get; set; } #Legacy LAPS PasswordAgeDays.
public Nullable<UInt32> LegacyPasswordLength { get; set; } #Legacy LAPS PasswordLength.
public Nullable<UInt32> LegacyPasswordComplexity { get; set; } #Legacy LAPS PasswordComplexity.
public IReadOnlyList<PolicyAttribution> Attribution { get; set; } #ResultMetadataPolicy Attribution rows (winner + sources) for the above keys.
public IReadOnlyList<Object> Entries { get; set; } #ResultMetadataRaw key/value pairs discovered under the LAPS policy key for convenience.
public String AttributionTopWriters { get; } #ResultMetadataDistinct list (up to 3) of Effective GPO names that wrote LAPS settings; useful for compact summaries.
public String WinningGpo { get; } #ResultMetadataFriendly name of the winning GPO for the first attributed setting (best-effort).