How it works
Directory Guard keeps the process simple: export from on-prem Active Directory, upload, analyze, and report.
1
Export from AD
Use your existing PowerShell exports to capture users, groups, memberships, OUs, ACLs, and GPO links to CSV or JSON.
2
Upload to Directory Guard
Upload the offline exports to Directory Guard — no live domain connectivity required, and data stays in your control.
3
Review insights
See nested group expansions, delegated access chains, and risk findings. Download reports or share summaries with auditors.
Offline-first by design
Directory Guard analyzes exports without connecting to production AD, so you can keep review traffic away from your domain while accelerating investigations.