Active Directory Identity Scan service scans for all identities across all domains in the associated Active Directory forest. Identities are classified as any object in Active Directory that has a valid Security Identifier (objectSid) attribute.
The collected data includes a predefined set of single-value attributes that enrich the basic identity metadata for users, groups, and other security principals found in Active Directory.
For a list of the currently included attributes, refer to the Micro Focus File Reporter 4.1 Database Schema and Custom Queries Guide.
NOTE:Multi-value attributes are currently not supported, except the objectClass attribute for which only the primary structural class value is collected.
Support for multi-value attributes such as group members, direct reports, and SID history will be added in a future release.