Why SmartProfiler/SecID?

It’s crucial to carry out an advanced assessment before purchasing any monitoring software for any technology to make sure the tool can keep an eye on all the problems the assessment tool finds, something the SmartProfiler or SecID does! Not every assessment tool examines every facet of technologies supported by SecID.

  • Advanced Assessment
  • 10000+ Security, Health & Configuration Tests
  • Reduce attack surface by 90%
Active Directory & CIS Assessment.

Security Assessment Tools for Active Directory, M365, AVD, Azure, Entra ID, and more technologies

Our mission for Health and risk assessment of Active Directory, Microsoft 365, Azure and Azure Virtual Desktop is to provide a comprehensive evaluation of our clients’ environment and identify potential issues, risks, and opportunities for improvement.

10000+ Security & Health Checks

To ensure the security of an Active Directory, Microsoft 365, Azure, Azure Virtual Desktop and Entra ID, organizations often employ various tests and best practices, including those outlined by MITRE, ANSSI, CIS and NIST organizations.

SmartProfiler Built-in Issues Fixer Tools

SmartProfiler ships Issues Fixer. You can fix low, high and medium issues with a mouse click and follow the on-screen steps to resolve an issue. The Issues Fixer can also be used to export the PowerShell script with affected objects to fix the issues.

Provide Vendor Recommendation Link for Each Test

SmartProfiler provides vendor links for each test so you can learn more about each test’s importance and the reasons you should check your environments against vendor recommendations.

Customize Reports and View issues in Console

Since SmartProfiler generates its reports in Word Format, they can be customized and rebranded. Additionally, you can change an issue’s severity or the SmartProfiler’s impact recommendations and impacts.

Image

Assessment Approach & Methodology

SmartProfiler uses three-steps methodology which has been designed based on our experience working with hundreds of AVD, Active Directory, Microsoft 365, and Azure environments.

  • Understanding the stakeholders

    In an IT environment we have two main stakeholders; IT Management Team who is responsible for allocating budget and making decisions. IT Operations Team who is responsible for maintaining the IT environment and ensuring all business services are up and running.

  • Discovering & Defining Assessment Scope

    The goal is to address Management needs by ensuring the scope for environment is known. The scope can be considered as a set of Active directory domains/host pools/office subscriptions. There need to be a discovery phase that can discover current environment and present a summary of discovered objects.

  • Executing Assessment & Generating Detailed Reports

    You are ready to execute Assessment for scoped Active Directory domains/host pools or Microsoft 365/Azure subscriptions and then generate reports.

Shape Image

Supported Assessment Technologies by SecID

Microsoft Cloud Technologies

Microsoft 365
CIS v5.0.0

Objective: Perform a complete M365 CIS Assessment using CIS and additional tests.

Azure Foundation
CIS v4.0.0

Objective: Perform CIS Benchmark for Azure Foundattion

Azure Database
CIS v1.0.0

Objective: Perform CIS Azure Database Assessment

Azure Storage
CIS v2.0.0

Objective: Perform CIS Azure Storage Assessment

Azure Compute
CIS v2.0.0

Objective: Perform CIS Azure Compute Assessment

Azure Kubernetes Service
CIS v1.7.0

Objective: Perfom CIS Azure AKS Assessment

Microsoft Azure Entra ID
SP v1.0.0

Objective: Perform Entra ID Assessment

Microsoft Azure Infra
SP v1.0.0

Objective: Performs Azure Infra Assessment.

Microsoft AVD
SP v1.0.0

Objective: Perform Microsoft AVD Assessment

Microsoft FSLogix
SP v1.0.0

Objective: Perform FSLogix Assessment

InTune-iOS BYOD
CIS v1.0.0

Objective: Perform iOS Device Assessment in Intune based on BYOD CIS.

InTune-iOS ORG
CIS v1.0.0

Objective: Perform iOS Device Assessment in Intune based on ORG CIS

Intune for Windows 10
CIS v4.0.0

Objective: Objective is to check if recommended CIS GPO Settings are configured in Intune Admin Center for Windows 10

Intune for Windows 11
CIS v4.0.0

Objective:Objective is to check if recommended CIS GPO Settings are configured in Intune Admin Center for Windows 11
Microsoft Infra. Technologies

Microsoft Active Directory
SP v6.0.0

Objective: MITRE, ANSSI, CIS and MS Recommeded Assessment

PKI Assessment (Private/Internal)
SP v1.0.0

Objective: PKI Assessment for Private and Internal CA

Windows File Server Assessment
CIS v1.0.0

Objective: Windows File Server Assessment for File Servers

SQL Server 2019
CIS v4.0.0

Objective: SQL Server Assessment based on CIS Assessment

SQL Server 2022
CIS v4.0.0

Objective: SQL Server Assessment based on CIS Assessment

Windows Server 2016
SP v6.0.0

Objective: Objective is to check if recommended CIS Settings are applying on Windows Servers.

Windows Server 2019
CIS v1.0.0

Objective: Objective is to check if recommended CIS Settings are applying on Windows Servers.

Windows Server 2022
CIS v1.0.0

Objective: Objective is to check if recommended CIS Settings are applying on Windows Servers.

Windows Server 2025
CIS v4.0.0

Objective: Objective is to check if recommended CIS Settings are applying on Windows Servers.

Intune for Windows 10 Device
CIS v4.0.0

Objective: Objective is to check if recommended CIS GPO Settings are configured on Target Windows 10 Devices

Intune for Windows 11 Device
SP v6.0.0

Objective: Objective is to check if recommended CIS GPO Settings are configured on Target Windows 10 Devices

Microsoft Windows 10
CIS v4.0.0

Objective: Objective is to check if recommended CIS GPO Settings are configured on Windows 10

Microsoft Windows 11
CIS v4.0.0

Objective: Objective is to check if recommended CIS GPO Settings are configured on Windows 11

Exchange Server 2016
CIS v1.0.0

Objective: Performs CIS Assessment

Exchange Server 2019
CIS v1.0.0

Objective: Performs CIS Assessment

Microsoft IIS 10
CIS v1.2.1

Objective: Objective is to check if recommended CIS Settings are applying on IIS Servers

Microsoft DHCP
SP v1.0.0

Objective: Perform DHCP Assessment for scopes and servers
Browsers

Microsoft Edge
CIS v3.0.0

Objective: Objective is to check if CIS Edge Settings are applying to target computers.

Google Chrome
CIS v3.0.0

Objective: Objective is to check if CIS Chrome Settings are applying to target computers.

Mozilla Firefox
CIS v1.0.0

Objective: Objective is to check if CIS Firefox Settings are applying to target computers.
Non-Microsoft Cloud Technologies

AWS Web Services
CIS v5.0.0

Objective: CIS AWS Web Service Assessment

AWS Compute Services
CIS v5.0.0

Objective: CIS AWS Compute Service Assessment

AWS Database Services
CIS v5.0.0

Objective: CIS AWS Web Database Assessment

AWS Storage Services
CIS v5.0.0

Objective: CIS AWS Storage Service Assessment

AWS End User Compute
CIS v5.0.0

Objective: CIS AWS End User Compute Service Assessment
Non-Microsoft Infra. Technologies

VMWare ESXi 8.0
CIS v1.2.0

Objective: Perform a complete CIS Assessment.

Ubuntu Linux 22.04 LTS
CIS v2.0.0

Objective: Perform a complete CIS Assessment.

Ubuntu Linux 24.04 LTS
CIS v1.0.0

Objective: Perform a complete CIS Assessment.

Ubuntu Linux 20.04 LTS
CIS v3.0.0

Objective: Perform a complete CIS Assessment.

CentOS Linux 8
CIS v2.0.0

Objective: Perform a complete CIS Assessment.

Debian Linux 12
CIS v2.0.0

Objective: Perform a complete CIS Assessment.

Red Hat Enterprise Linux 9
CIS v1.0.0

Objective: Perform a complete CIS Assessment.

NGINX – Redhat-WebServer
CIS v2.1.0

Objective: Perform a complete CIS Assessment.

NGINX – Redhat-LoadBalancer
CIS v2.1.0

Objective: Perform a complete CIS Assessment.

NGINX – Redhat-Proxy
CIS v2.1.0

Objective: Perform a complete CIS Assessment.

Oracle Database 19c – Oracle Linux
CIS v1.2.0

Objective: Perform a complete CIS Assessment.

Oracle Database 19c – Oracle Windows
CIS v1.2.0

Objective: Perform a complete CIS Assessment.

Oracle Database 23AI – Oracle Windows
CIS v1.1.0

Objective: Perform a complete CIS Assessment.

Oracle Database 23AI – Oracle Linux
CIS v1.1.0

Objective: Perform a complete CIS Assessment.

Fortigate 7.0
CIS v1.3.0

Objective: Perform a complete CIS Assessment.

MariaDB 10.11 – Ubuntu
CIS v1.0.0

Objective: Perform a complete CIS Assessment.
SecID Products

SmartProfiler-SecID is a single application providing recommendations from CIS and NIST for multiple technologies. However, there are other SmartProfiler products that can be used to perform health check, analyze and migrate GPOs and so on.

SmartProfiler-SecID Enterprise Edition

SmartProfiler-SecID Enterprise Edition is designed to perform CIS/NIST CSF 2.0 Assessments for multiple technologies from a single application. The SmartProfiler-SecID comes in both On-Prem and Web App editions. Quickly perform assessment of technology of your choice and generate reports for Technical and business executives.

Learn More

SmartProfiler AVD Assessment & Optimizer

Technical Assessment of AVD Host Pools to find missing performance settings including settings recommended by Microsoft and use Optimizer to generate Optimization Scripts based on your environment. AVD Assessment can also be used to check configuration inconsistencies across host pools.

Learn More

SmartProfiler Health Checks

SmartProfiler Health Checks is a single application designed to perform health check of Active Directory, VMware, DHCP, AVD and IIS Servers. SmartProfiler Health Checks also provides the ability to add custom health checks. Email notifications are supported to various IT Teams configured in different Email Templates.

Learn More

SmartProfiler AD GPO Analyzer & Migartor

Use SmartProfiler AD GPO Analyzer & Migrator to analyze AD On-Prem GPO and then migrate them to Intune in a phased manner. AD GPO Analyzer & Migrator can also be used to perform domain to domain AD GPO migration.

Learn More

We can help remediate issues using Automated Tools and Custom Scripts or use Built-In Fixer Tools available with SmartProfiler

We have specialised knowledge and expertise in many different facets of technology as a group of Microsoft professionals, especially those that pertain to Microsoft products and services. We can assist you if you need help fixing problems found by the SmartProfiler Tools in your environment. You can also use Built-in Fixer available with SmartProfiler for Active Directory & CIS Assessment.

Active Directory Issues Fixer
Active Directory Security Assessment Dashboard by SmartProfiiler.
Active Directory Assessment Dashboard

View Findings in SmartProfiler Console

There are four summary panels available in SmartProfiler; Bird’s EYE View, Category-Wise, Short Summary and Severity-Wise. You can check all views in console before generating report.

 

The "COMPLETE" Assessment

Someone is "securing" something, and someone else is "breaking" something. Attackers just need to employ the 30–35 approaches listed in order to get access to Active Directory, but security personnel must employ all available technological tools in order to defend the environment from attackers. When we say, "all technical means," we mean looking at Active Directory from the standpoints of attackers and AD upkeep.

Learn About

The fact that an attacker would have investigated every method of breaking into Active Directory despite the fact that not all Active Directory administrators are aware of them makes it necessary to conduct a "complete" security assessment for Active Directory.

Advanced assessment parameters for an Active Directory security assessment includes:

1. Investigating further based on the assessment findings.
2. Checking all GPO Settings recommended by CIS and NIST for domain Controllers.
3. Ensure the necessary structure is defined for GPO and all recommended GPO settings are implemented.
4. Administration structure is defined for Organizational Units and to manage AD & domain joined devices.
5. Operational procedures are in place.

Learn About

While the Assessment Categories assist in selecting the appropriate Active Directory Assessment tool, the Methodology provides an overall perspective for both the IT Management Team and IT Operations Team. The SmartProfiler adopts a methodology that caters to the needs of both teams. The methodology should include the following:

  • Assessing the current environment level: The tool should evaluate the existing Active Directory environment and discover all domains.
  • Identifying Critical and High Risks: The Management Team needs to be aware of any critical and high-risk factors in the environment that might potentially disrupt business applications.
  • Prioritizing Items in an Action Plan: The Management Team must determine if there are critical and high-risk items that require immediate attention, considering the cost associated with addressing them. Since budget limitations may exist, prioritization becomes necessary.
  • Vendor Recommendation Link: It is the most important aspect of an Active Directory engagement. You would like to know what Microsoft and other vendors say about the issues reported by the tool and does the tool provides a link to check?
  • Mitigation Pan: A mitigation plan can be drafted based on your engagement experience which includes preventing issues/failures in the near future.

 

Learn About

How many times have you assessed an Active Directory environment for a client and seen users with unrestricted delegation, trusted for delegation, DES-Encryption enabled, and pre-authentication Kerberos disabled? So, a small business running Active Directory with two to five domain controllers should to be able to manage their AD infrastructure easily without the need for utilising the aforementioned settings for users. Unrestricted delegation, DES-Encryption for users, and deactivating pre-authentication Kerberos for users are not actually required. You would still need to complete the tests associated to users as part of the standard checklist included in the Assessment tool to make sure everything is in order for user objects.

Learn About
Image

Effective Security, Health and Misconfiguration assessment for Microsoft & Non-Microsoft Technologies

Reduce Attack Surface by 95%

Since SmartProfiler checks every component of AD, M365, Azure, it helps in reducing the attack surface by 95%.

Check Every Technology Component

Checks every component of Active Directory from Objects to Replication configuration and find out hidden components.

Identify health and mis-configuration issues

Active Directory misconfiguration and health problems cannot always be found using every tool or product.

Reducing Troubleshooting Time

The time required for Active Directory troubleshooting can be greatly decreased by SmartProfiler.

Shape Image
Shape Image

SecID Features

Since 2014, SmartProfiler has undergone substantial progress. Several new features have been added to SmartProfiler.

  • Multi-Tenancy Support - Add AD, Azure, M365 Tenants
  • NIST/CIS GPO Settings Analyzer
  • Active Directory Permissions Analyzer
  • Active Directory Smart Queries
  • Create Custom Real-Time Monitoring Alerts
  • Add New Tests/Modules
  • Generate Custom Reports
  • Security Score Timeline
  • Domain Controller Security Analyzer
  • GPO Settings Checker
  • Active Directory Issues Fixer
  • Active Directory Real-Time Monitoring
  • Create Custom AD Queries
  • Compare Assessments
  • Security Score
Shape Image

Copyright © DynamicPacks Technologies

Translate »