Frequently Asked Questions

No. SmartProfiler for AVD Assessment is a ready-only assessment. SmartProfiler for AVD Assessment collects data from a Session Host of each Host Pool and then analyze the data.

No. SmartProfiler for AVD Assessment is a ready-only assessment. SmartProfiler for AVD Assessment collects data from a Session Host of each Host Pool and then analyze the data.

No. SmartProfiler connects to remote Systems using Dynamic Packs and collect required information.

No. SmartProfiler collects information in CSV files stored on SmartProfler computer.

For FSLogix Assessment it depends on the number of Host Pools in AVD Environment. For 10 host pools, it takes about 45 minutes to collect FSLogix settings from Session Hosts.

Note that SmartProfiler has been designed as a proactive engagement. There have been substantial changes in the inner working of SmartProfiler as part of the recent development. We have recently added new features as part of the SmartProfiler. However, these additional features with a licensing cost as summarized below:

• Assessment License: Use Assessment License if you want to perform Cyber Security Assessment for Active Directory and Azure and then generate a report in Word format. The AD Assessment license includes below panes:
  • AD Discovery
  • Assessment Dashboard
  • Generate Report
  • AD Permissions Analyzer
  • AD Smart Queries
  • GPO Settings Checker
  • Compare Assessments
• AD Issues Fixer License: The Issues Fixer License can be used to fix issues such as fixing Critical, High, Medium and Low issues.
• Scheduler License: The Scheduler License can be used to schedule assessments and be able to get notifications if any issues occur. The Scheduler license includes below panes/modules:
  • Configure Alerts
  • Real-Time Console
  • Smart Scheduler
• AD Permissions Fixer: AD Permissions Fixer can be used to fix permissions for Active Directory Organizational Units and Tier 0 Objects.
• CIS/NIST Analyzer License: CIS/NIST Analyzer license can be used to analyze GPO Settings according to CIS Template.

M365 CIS Assessment License: M365 CIS Assessment license can be used to perform assessment of Microsoft 365 Tenants based on the CIS Benchmark and additional tests designed by our M365 team.

Note that SmartProfiler has been designed as a proactive engagement. There have been substantial changes in the inner working of SmartProfiler as part of the recent development. We have recently added new features as part of the SmartProfiler. However, these additional features with a licensing cost as summarized below:

• Assessment License: Use Assessment License if you want to perform Cyber Security Assessment for Active Directory and Azure and then generate a report in Word format. The AD Assessment license includes below panes:
  • AD Discovery
  • Assessment Dashboard
  • Generate Report
  • AD Permissions Analyzer
  • AD Smart Queries
  • GPO Settings Checker
  • Compare Assessments
• AD Issues Fixer License: The Issues Fixer License can be used to fix issues such as fixing Critical, High, Medium and Low issues.
• Scheduler License: The Scheduler License can be used to schedule assessments and be able to get notifications if any issues occur. The Scheduler license includes below panes/modules:
  • Configure Alerts
  • Real-Time Console
  • Smart Scheduler
• AD Permissions Fixer: AD Permissions Fixer can be used to fix permissions for Active Directory Organizational Units and Tier 0 Objects.
• CIS/NIST Analyzer License: CIS/NIST Analyzer license can be used to analyze GPO Settings according to CIS Template.

M365 CIS Assessment License: M365 CIS Assessment license can be used to perform assessment of Microsoft 365 Tenants based on the CIS Benchmark and additional tests designed by our M365 team.

Installation of SmartProfiler Assessment Tool is very simple. If you have already downloaded or received the SmartProfiler Assessment ZIP file from our team, then extract ZIP to a temp folder and then double click on MSI file to install the SmartProfiler Assessment Tool.

Requirements

Some of the SmartProfiler requirements must be met as mentioned below:

• SmartProfiler computer should be joined to Active Directory domain.

Microsoft Word and Excel needs to be installed on SmartProfiler computer in order to generate reports.

Installation of SmartProfiler Assessment Tool is very simple. If you have already downloaded or received the SmartProfiler Assessment ZIP file from our team, then extract ZIP to a temp folder and then double click on MSI file to install the SmartProfiler Assessment Tool.

Requirements

Some of the SmartProfiler requirements must be met as mentioned below:

• SmartProfiler computer should be joined to Active Directory domain.

Microsoft Word and Excel needs to be installed on SmartProfiler computer in order to generate reports.

SmartProfiler executes PowerShell based scripts to perform assessment on target Active Directory systems. You are required to disable Antivirus completely or exclude C:\Users\Public\SmartProfiler folder from Antivirus so SmartProfiler processes can execute the assessment flawlessly.

You can also install PowerShell modules and tools manually by executing the commands below on SmartProfiler computer:

For Active Directory Forest:

If SmartProfiler is running on Windows Server Operating System:

• Add-WindowsFeature -Name RSAT-AD-PowerShell
• Add-WindowsFeature -Name GPMC
• Add-WindowsFeature -Name RSAT-DNS-Server
• Add-WindowsFeature -Name RSAT-ADDS-Tools

If SmartProfiler is running on Windows Client Operating System:

• Add-WindowsCapability -Online -Name ActiveDirectory.DS-LDS.Tools~~~~0.0.1.0
• Add-WindowsCapability -Online -Name GroupPolicy.Management.Tools~~~~0.0.1.0
• Add-WindowsCapability -Online -Name Dns.Tools~~~~0.0.1.0

Make sure to execute the above commands in an elevated PowerShell prompt.

• AD DISCOVERY: This option is used before executing the assessment. The AD Discovery needs to be completed before AD Assessment can be executed.
• ASSESSMENT DASHBOARD: The Assessment Dashboard shows issues reported with other tests data such as affected objects list.
• GENERATE REPORT: Use this option if you would like to generate an AD Assessment report.
• AD PERM ANALYZER: Use this option if you would like to analyze permissions configured in the Active Directory forest for a single or all AD Domains.
• AD ISSUES FIXER: AD Issues Fixer can be used to fix critical, medium, high, low and other issues reported during the AD Assessment.
• DC SEC ANALYZER: DC SEC Analyzer option is to help you analyze security status of your Domain Controllers. All 51 tests for Domain Controllers will be shown for each domain controller.
• GPO SETTING CHECKER: GPO Setting Checker can be used to check if a particular or a set of GPO Settings are applied in an AD Domain or not.
• SMART SCHEDULER: If you would like to schedule the AD Assessment based on the schedule defined by you and receive notification if there are any issues.
• CONFIGURE ALERTS: Use this option if you are planning to use Real-Time monitoring for Active Directory and would like to configure all alerts. The Real-Time monitoring executes every 5 minutes and notify via email if it finds any issues.
• REAL-TIME CONSOLE: Use Real-Time Console to see issues and changed data.
• NIST/CIS ANALYZER: Use this option to check CIS recommended GPO settings based on a CIS Template. All Settings can be checked for each AD Domain in the AD Forest.
• AD SMART QUERIES: Use this option to run PowerShell commands and add your own query and run them against the AD Domains.