No data available in Azure AD Password Protection Reports
In this article:
Issue description
Prerequisites
Possible causes
Resolution
Related topics and articles
When and how to reach support
Issue description:
In ADAudit Plus, the Azure AD Password Protection Reports profile provides insights into password changes, password change failures, and password set failures. However, in some cases, users may find that no data is available under this profile. This issue typically arises due to misconfigurations, insufficient privileges, or communication failures between ADAudit Plus and the domain controllers. This document provides a structured approach to diagnosing and resolving this issue.
Prerequisites:
Before troubleshooting, ensure the following prerequisites are met:
All domain controllers are configured in ADAudit Plus.
Required ports and firewall rules are enabled to allow communication between the Domain Controller and ADAudit Plus.
The service account used in ADAudit Plus is a member of the Event Log Readers group.
The Event Log retention size is at least 4 GB to prevent log overwrites.
Possible causes:
Domain controllers are not configured in ADAudit Plus, preventing data collection.
Communication failure between ADAudit Plus and the Domain Controller due to RPC-related issues.
The service account lacks the necessary permissions to collect security event logs.
Event log size is too small, causing logs to be overwritten before collection.
Files are stuck in the event data/raw or processed directories of ADAudit Plus.
Resolution:
Step 1: Verify Domain Controller configuration
Navigate to the Domain Settings tab in ADAudit Plus.
Confirm that all necessary domain controllers are properly configured.
Step 2: Check for communication issues
If log collection fails, check for RPC-related errors.
If encountering "RPC Server Unavailable (Error Code 6ba)", refer to the troubleshooting guide.
Step 3: Verify service account permissions
To check the service account configured in ADAudit Plus:
Go to Domain Settings.
Click the dropdown next to the domain name.
Select Modify Credentials.
Grant necessary permissions:
Open Active Directory Users and Computers.
Navigate to Built-in > Event Log Readers.
Right-click Event Log Readers > Members > Add the configured service account.
Step 4: Check for stuck files in event data folder
If files are stuck in event data/raw or processed directories, contact ManageEngine Support for assistance.
Related topics and articles:
How to reach support:
New to ADSelfService Plus?
Related Articles
No data available in LAPS reports
In this article: Issue description Prerequisites Possible causes Resolution Related topics and articles How to Reach Support Issue description In ADAudit Plus, the LAPS Audit Profile provides insights into local administrator password read events, ...How to enable password protection for exported or scheduled reports
In this article: Objective Prerequisites Steps to follow Validation and confirmation Tips Related topics and articles Objective This article explains how to enable password protection for reports that are exported or generated via a schedule in ...No data available in Logon reports
In this article: Issue description Prerequisites Possible causes Resolution Related topics and articles How to reach support Issue description In ADAudit Plus, the User Logon Reports profile provides insights into domain controller-based ...No data available under OU Management reports
In this article: Issue cescription Prerequisites Possible causes Resolution Related topics and articles When and how to reach support Issue description In ADAudit Plus, the OU Changes Reports profile provides insights into organizational unit (OU) ...No data available in local account management
In this article Issue description Possible causes Prerequisites Resolution Related topics and articles When and how to contact support Issue description The Local Account Management reports in ADAudit Plus display "No Data Available," preventing the ...