SpyCloud Guides
spycloud.comGet a demo
Start typing to search…

Configuring ADG

⚙️ Configuring Active Directory Guardian

With Active Directory Guardian (ADG) 7.3, users can export and import their configuration via a config file. To configure ADG 7.3 for the first time, follow the steps below.

🔑 Step 1: Enter Your SpyCloud API Key

For steps on how to obtain your API key, reach out to your CSM.

Enter API Key Screen

📊 Step 2: Opt Out of Reporting Statistics (Optional)

You may opt out of sending reporting statistics to the SpyCloud Portal.

⚠️

If you opt out, you will not be able to monitor ADG host and scan details from the SpyCloud Portal.

Click Next to continue.

Opt-Out Screen

🏢 Step 3: Configure Local Active Directory Scan

  1. Select Setup Local Active Directory.
  2. Add the domain name manually or use Get My Domain.
    • The detected domain depends on the membership of the server/workstation running ADG.
  3. Click Next.
Local AD Setup

🔄 Step 4: Enable Automatic Scanning (Optional)

Choose whether to enable Automatic Scanning (every 5 minutes).

  • Helps monitor for newly exposed credentials in near real time
  • Detected accounts can be handled via Remediation Policies
Automatic Scanning Setup

🕒 Step 5: Select Scan Type

  • Save and Configure Automatic Scan → Runs quick scans every 5 minutes
  • Save and Run Manual Scan → Runs a deeper, comprehensive scan
📘

💡 Recommendation: Use Automatic Scans for real-time monitoring and schedule Full Scans daily for deeper analytics.

Save & Scan Options

🔧 Step 6: Create Remediation Policy

If you enable Automatic Scanning for the first time, you must click Create Remediation Policy on the next screen.

Remediation Policy Setup

📧 Step 7: Configure Email Notifications

Add:

  • Scan Failure Email (notifies immediately on failure, throttled to 1/hr)
  • Scan Completion Email

For details, see [Configuring SMTP Email].

Email Settings

🔄 Exporting & Importing Configuration

ADG 7.3 allows exporting/importing non-sensitive portions of configuration:

  • Useful for replicating installations or troubleshooting.
  1. Navigate to Advanced Settings → Import/Export.
  1. Export creates a JSON file: ADG Config 7.3.0.0.txt.
⚠️

Do not modify this file — modified files cannot be imported.

Import the config file to replicate settings.

  • A green banner confirms success.

Updated 2 months ago