cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
novasam
Engaged Sweeper III
I would like to see the option to add custom actions for users.

We could write scripts to unlock AD user accounts, reset a user password, ect...

It would make the product more of a one stop shop for helpdesk. Also a link on the dashboard that lists the number of users that have activly logged into computers, much like the link for computers.

Everything else looks good. I have a number of scripts and complide programs I have been using with lansweeper, this addition would be a great and probably simple addition to this program.
7 REPLIES 7
i_kulgu
Champion Sweeper
You can also use "Active Directory Users and Computers".
The name of the tool is : dsa.msc.
You can open with this your AD. control panel from your computer.

http://www.mijnbestand.nl/Bestand-ULQVDHG6E7NI.rar

This is the link to the file. If you need other tools for AD, just tell me ..

Regards,

I.Kulgu
Hemoco
Lansweeper Alumni
We're thinking about an "all in one" premium tool.
Let us know which other suggestions you have.
i_kulgu
Champion Sweeper
Identifies whether or not a user is allowed to change his or her password.

Const ADS_ACETYPE_ACCESS_DENIED_OBJECT = &H6
Const CHANGE_PASSWORD_GUID = _
"{ab721a53-1e2f-11d0-9819-00aa0040529b}"

Set objUser = GetObject _
("LDAP://cn=myerken,ou=management,dc=fabrikam,dc=com")
Set objSD = objUser.Get("nTSecurityDescriptor")
Set objDACL = objSD.DiscretionaryAcl

For Each Ace In objDACL
If ((Ace.AceType = ADS_ACETYPE_ACCESS_DENIED_OBJECT) And _
(LCase(Ace.ObjectType) = CHANGE_PASSWORD_GUID)) Then
blnEnabled = True
End If
Next

If blnEnabled Then
WScript.Echo "The user cannot change his or her password."
Else
WScript.Echo "The user can change his or her password."
End If
i_kulgu
Champion Sweeper
Sample script for password expire.

Const SEC_IN_DAY = 86400
Const ADS_UF_DONT_EXPIRE_PASSWD = &h10000

Set objUserLDAP = GetObject _
("LDAP://CN=myerken,OU=management,DC=fabrikam,DC=com")
intCurrentValue = objUserLDAP.Get("userAccountControl")

If intCurrentValue and ADS_UF_DONT_EXPIRE_PASSWD Then
Wscript.Echo "The password does not expire."
Else
dtmValue = objUserLDAP.PasswordLastChanged
Wscript.Echo "The password was last changed on " & _
DateValue(dtmValue) & " at " & TimeValue(dtmValue) & VbCrLf & _
"The difference between when the password was last set" & _
"and today is " & int(now - dtmValue) & " days"
intTimeInterval = int(now - dtmValue)

Set objDomainNT = GetObject("WinNT://fabrikam")
intMaxPwdAge = objDomainNT.Get("MaxPasswordAge")
If intMaxPwdAge < 0 Then
WScript.Echo "The Maximum Password Age is set to 0 in the " & _
"domain. Therefore, the password does not expire."
Else
intMaxPwdAge = (intMaxPwdAge/SEC_IN_DAY)
Wscript.Echo "The maximum password age is " & intMaxPwdAge & " days"
If intTimeInterval >= intMaxPwdAge Then
Wscript.Echo "The password has expired."
Else
Wscript.Echo "The password will expire on " & _
DateValue(dtmValue + intMaxPwdAge) & " (" & _
int((dtmValue + intMaxPwdAge) - now) & " days from today" & _
")."
End If
End If
End If
i_kulgu
Champion Sweeper
Sample script for unlocking account.

Set objUser = GetObject _
("LDAP://cn=MyerKen,ou=Management,dc=NA,dc=fabrikam,dc=com")

objUser.IsAccountLocked = False
objUser.SetInfo
Hemoco
Lansweeper Alumni
Please post any tools or scripts that you want to see included.
Hemoco
Lansweeper Alumni
novasam wrote:
I would like to see the option to add custom actions for users.

We could write scripts to unlock AD user accounts, reset a user password, ect...


Good idea.