This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Community FAQ
Register | Log In
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Lansweeper Community
- Forums
- Reports & Analytics
- AD information
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Register to ask a question, start a topic or share an idea
Join the Community
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎10-09-2015 05:11 PM
Hi, I am looking for a way to check if AD accounts have expired or not been logged into in the last 120 days. I looked through the reports subforum and didnt see anything like I am looking for. Is there a reporting feature in Lansweeper that I can use for this?
Solved! Go to Solution.
Labels:
- Labels:
-
Report Center
1 ACCEPTED SOLUTION
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎10-12-2015 01:02 PM
If an AD account is expired won't be tracked in your database. You need to check this on your Active Directory, possibly using a script. What you can pull a report of is AD user accounts which haven't been scanned as logged on to any computer during the last 120 days. Please find an example report below.
Note: In order to report on AD user accounts, ensure that you submitted the ADSI path of your users' OU for scanning under Configuration\Scanning methods, section Domain User Scanning. Details on how to use this scanning methods can be found in this article.
Note: In order to report on AD user accounts, ensure that you submitted the ADSI path of your users' OU for scanning under Configuration\Scanning methods, section Domain User Scanning. Details on how to use this scanning methods can be found in this article.
Select tblADusers.Displayname,
tblADusers.Username,
tblADusers.whenCreated
From tblADusers
Where Not Exists(Select tblCPlogoninfo.Username,
tblCPlogoninfo.Domain From tblCPlogoninfo
Where tblCPlogoninfo.Username = tblADusers.Username And
tblCPlogoninfo.Domain = tblADusers.Userdomain And tblCPlogoninfo.logontime >
GetDate() - 120)
Order By tblADusers.Username
3 REPLIES 3
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎01-24-2018 08:19 PM
Use ADTIDY instead.
http://www.cjwdev.com/Software/ADTidy/Info.html
http://www.cjwdev.com/Software/ADTidy/Info.html
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎01-24-2018 03:57 PM
Can this be modified to not show accounts already disabled? Also add an output to show the timestamp when it was last logged onto?
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎10-12-2015 01:02 PM
If an AD account is expired won't be tracked in your database. You need to check this on your Active Directory, possibly using a script. What you can pull a report of is AD user accounts which haven't been scanned as logged on to any computer during the last 120 days. Please find an example report below.
Note: In order to report on AD user accounts, ensure that you submitted the ADSI path of your users' OU for scanning under Configuration\Scanning methods, section Domain User Scanning. Details on how to use this scanning methods can be found in this article.
Note: In order to report on AD user accounts, ensure that you submitted the ADSI path of your users' OU for scanning under Configuration\Scanning methods, section Domain User Scanning. Details on how to use this scanning methods can be found in this article.
Select tblADusers.Displayname,
tblADusers.Username,
tblADusers.whenCreated
From tblADusers
Where Not Exists(Select tblCPlogoninfo.Username,
tblCPlogoninfo.Domain From tblCPlogoninfo
Where tblCPlogoninfo.Username = tblADusers.Username And
tblCPlogoninfo.Domain = tblADusers.Userdomain And tblCPlogoninfo.logontime >
GetDate() - 120)
Order By tblADusers.Username
Reports & Analytics
Ask about reports you're interested in and share reports you've created. Subscribe to receive daily updates of reports shared in the Community.
New to Lansweeper?
Try Lansweeper For Free
Experience Lansweeper with your own data. Sign up now for a 14-day free trial.
Try Now
Related Content
- Configure Cloud Configuration - Asset Intune Access denied in General Discussions
- Problem scanning host in General Discussions
- Ping indicator / orb in General Discussions
- ServiceNow Service Graph Integration - Mapping against Install Status in General Discussions
- Database inventory in Lansweeper in Product Discussions
