The Active Directory vulnerability assessment automatically refreshes on a pre-defined daily schedule at the same time the forest topology is re-discovered. You may also update the assessment results manually at any time.
Refresh domain controllers and assessment results
-
From the Command Center navigation pane, go to Protect > Active Directory.
-
On the Forests tab, click the forest.
-
In the Summary tile, click Refresh domain controllers
.This action performs two functions:
-
Refreshes the Active Directory topology displayed on the Content tab.
-
Re-runs the vulnerability assessment and updates assessment results.
This ensures that:
-
Newly added domain controllers are discovered.
-
Removed domain controllers are no longer evaluated.
-
Updated configurations are reflected in findings.
-
When to refresh
You should refresh the forest client:
-
After deploying agents to additional domain controllers.
-
After remediating identified vulnerabilities.
-
After adding or removing domain controllers.
-
After making significant Group Policy or security configuration changes.
Refreshing ensures that assessment results reflect the current security posture of the environment.
Additionally, the refresh process runs automatically once a day.