Uncategorized 

Old Computer Accounts in Active Directory

Andrew Herron 5214 Views 1 Comment ,

I needed to find out which computer accounts where stale in a Active Directory Environment. I

first tried to use Powergui to get the information that I required by exporting all the computer

objects to a csv. When I opened the csv that I exported I could not find the attribute that

I was looking for. After a bit of searching I found the following script in Power Shell that worked

100%.

$old = (Get-Date).AddDays(-90)

The above is to create a variable that points to objects older than 90 days from the current date.

After running that then I ran the below script to get the information that I required. Bear in mind

that you require the Active Roles Management Shell for Active Directory from Quest.

Get-QADComputer -IncludedProperties pwdLastSet -SizeLimit 0 | where { $_.pwdLastSet -le $old } | select-object Name, ParentContainer, Description, pwdLastSet | export-csv c:\temp\outdated.csv

More here:

http://dmitrysotnikov.wordpress.com/2007/09/07/locate-obsolete-computer-records-in-ad/

Related Articles:

  1. Microsoft, patches and Blue Screens
  2. Power Shell in the Enterprise – Standards and Best Practices
  3. Offline Folders not Working in Windows 7 and SBS

You May Also Like

OCS 2007 R2 member server role on Windows Server 2008 R2

Uwin Young 0

Upgrading or moving to Exchange 2010 – Where do I start?

Nicolas Blank 0

Microsoft Scripting Guy–Ed Wilson Guest Blog–PowerShell and WMI Discovery

Nicolas Blank 0

Pin It on Pinterest