ActiveDirSec.Org

The world's most trusted forum on Active Directory Security


ActiveDirSec.Org -> General Active Directory Topics -> How to enumerate a list of users who have not logged on in the last 7 days?
Post Info TOPIC: How to enumerate a list of users who have not logged on in the last 7 days?
Armen


Newbie

Status: Offline
Posts: 1
Date: Jun 18, 2011
How to enumerate a list of users who have not logged on in the last 7 days?
 
 

Hello Forum,

I would like to know how we if there is an easy way to enumerate a list of all domain user account holders that have not logged on in the last 7 days. We been asked by our internal security audit team to furnish this report.

I was hoping to query our local domain controller based on the lastLogonTimestamp attribute value, but I read somewhere that this attribute is only accurate for logons greater than 14 days. Since our requirement is for 7 days, that does not work for us.

Is there an easy and efficienct way to enmuerate this list, without us having to manualy query ever DC for the lastLogon attribute and then manually converting and comparing these timestamps?

If you know of any way to do this more easily, please share.

Armen



__________________

لا مصيبة أعظم من الجهل (There is no calamity greater than ignorance)
Page 1 of 1  sorted by
Quick Reply

Please log in to post quick replies.
ActiveDirSec.Org -> General Active Directory Topics -> How to enumerate a list of users who have not logged on in the last 7 days?
Post to Facebook Post to Digg Post to Del.icio.us
Members Login
Username 
 
Password 
    Remember Me