The Domain Glossary feature in the Segura platform allows mapping specific rules and configurations to privileged accounts and devices discovered through Active Directory (AD) integrations. Unlike the general glossary, which applies broadly to all device types, the domain glossary is designed to enhance and automate actions specifically within AD-driven discoveries.
This glossary facilitates intelligent enrichment of domain-related assets by assigning custom rules for credential association, account handling, and categorization based on domain data.
Features
- Defining rules to match and categorize accounts discovered via LDAP/AD.
- Automating the assignment of device forms, credential types, and service classifications.
- Applying tags based on distinguished names (DNs), domains, or other AD attributes.
- Associating service accounts to credential groups or device pools automatically.
- Prioritizing rules to resolve overlapping entries.
Applicability
This feature is useful in organizations that rely heavily on Active Directory for authentication, account provisioning, and infrastructure management. It ensures that all accounts discovered via AD are interpreted and onboarded according to predefined policies, improving consistency and reducing manual work.
Use Cases
- Classify domain accounts into credential types based on naming conventions or domain hierarchy.
- Automatically tag accounts linked to specific organizational units (OUs).
- Map service accounts from AD to preconfigured device forms.
- Enrich account data from AD with relevant categorization and metadata.