Solution: - You can do this via dsquery from a DC.
1. Log into a DC.
2. Open a command prompt.
3. Run the command:
4. C:> dsquery user -inactive 60
This will give you a listing of all user accounts that have been inactive for 60+ days.
A cool script to use:
date /t
time /t
echo.
echo Stale AD Data Report
echo.
if not exist %windir%\ntds\ goto :NOT_DC
echo Computers, Inactive 60 Days
echo -------------------------------
dsquery computer -inactive 60
echo.
echo Users, Inactive 60 Days
echo -------------------------------
dsquery user -inactive 60
goto :EOF
:NOT_DC
echo This is not a DC, did not find:
echo %windir%\ntds\
1. Log into a DC.
2. Open a command prompt.
3. Run the command:
4. C:> dsquery user -inactive 60
This will give you a listing of all user accounts that have been inactive for 60+ days.
A cool script to use:
date /t
time /t
echo.
echo Stale AD Data Report
echo.
if not exist %windir%\ntds\ goto :NOT_DC
echo Computers, Inactive 60 Days
echo -------------------------------
dsquery computer -inactive 60
echo.
echo Users, Inactive 60 Days
echo -------------------------------
dsquery user -inactive 60
goto :EOF
:NOT_DC
echo This is not a DC, did not find:
echo %windir%\ntds\
Source:- http://www.puryear-it.com/blog/2012/10/26/list-inactive-ad-user-accounts/
No comments:
Post a Comment