API Reference

Enum

IdentityExposureEdgeKind

Edit on GitHub

Namespace ADPlayground.IdentityExposure

Assembly ADPlayground

Source ADPlayground/DirectoryScenarios/ComputerCatalogScenarioOptions.cs:65

Base Enum

Implements

IComparable ISpanFormattable IFormattable IConvertible

Modifiers sealed

Exposure relationship categories used by attack-path analysis.

Inheritance

Enum
IdentityExposureEdgeKind

Usage

This type appears in these public API surfaces even when no hand-authored example is attached directly to the page.

Returned or exposed by

Property IdentityExposureEdge.Kind
Field IdentityExposureEdgeKind.AclWrite
Field IdentityExposureEdgeKind.ConstrainedDelegation
Field IdentityExposureEdgeKind.Contains
Field IdentityExposureEdgeKind.Dcsync
Field IdentityExposureEdgeKind.ForceChangePassword
Field IdentityExposureEdgeKind.GpLink
Field IdentityExposureEdgeKind.GpLinkEdit
Field IdentityExposureEdgeKind.KeyCredentialLink
Field IdentityExposureEdgeKind.Member
Field IdentityExposureEdgeKind.PrimaryGroup
Field IdentityExposureEdgeKind.ReadGmsaPassword
Field IdentityExposureEdgeKind.ReadLapsPassword
Field IdentityExposureEdgeKind.ResourceBasedConstrainedDelegation
Field IdentityExposureEdgeKind.SidHistory
Field IdentityExposureEdgeKind.UnconstrainedDelegation
Field IdentityExposureEdgeKind.Unknown
Field IdentityExposureEdgeKind.WriteDacl
Field IdentityExposureEdgeKind.WriteOwner
Field IdentityExposureEdgeKind.WriteSpn

Inherited Methods

Values

public const IdentityExposureEdgeKind Unknown #

Unknown or not yet classified relationship.

Value: 0

public const IdentityExposureEdgeKind Member #

Group membership or nested group membership.

Value: 1

public const IdentityExposureEdgeKind PrimaryGroup #

Primary group relationship. Reserved until the primaryGroupID collector is implemented.

Value: 2

public const IdentityExposureEdgeKind SidHistory #

SID history relationship.

Value: 3

public const IdentityExposureEdgeKind AclWrite #

Generic write or full-control style ACL relationship.

Value: 4

public const IdentityExposureEdgeKind WriteDacl #

Discretionary ACL modification relationship.

Value: 5

public const IdentityExposureEdgeKind WriteOwner #

Ownership modification relationship.

Value: 6

public const IdentityExposureEdgeKind ForceChangePassword #

Password reset relationship.

Value: 7

public const IdentityExposureEdgeKind Dcsync #

Directory replication permission relationship.

Value: 8

public const IdentityExposureEdgeKind ResourceBasedConstrainedDelegation #

Resource-based constrained delegation relationship.

Value: 9

public const IdentityExposureEdgeKind ConstrainedDelegation #

Kerberos constrained delegation relationship.

Value: 10

public const IdentityExposureEdgeKind ReadGmsaPassword #

Group managed service account password read relationship.

Value: 11

public const IdentityExposureEdgeKind ReadLapsPassword #

LAPS password read relationship.

Value: 12

public const IdentityExposureEdgeKind GpLink #

GPO link relationship.

Value: 13

public const IdentityExposureEdgeKind GpLinkEdit #

GPO link edit relationship. Reserved until GPO link ACL edit collection is implemented.

Value: 14

public const IdentityExposureEdgeKind WriteSpn #

Service principal name write relationship.

Value: 15

public const IdentityExposureEdgeKind KeyCredentialLink #

Key credential link write relationship.

Value: 16

public const IdentityExposureEdgeKind Contains #

Directory container containment relationship.

Value: 17

public const IdentityExposureEdgeKind UnconstrainedDelegation #

Kerberos unconstrained delegation relationship.

Value: 18

IdentityExposureEdgeKind

Inheritance

Usage

Returned or exposed by

Inherited Methods

Parameters

Parameters

Parameters

Parameters

Values