Uncategorized 

Old Computer Accounts in Active Directory

Andrew Herron 3642 Views 1 Comment ,

I needed to find out which computer accounts where stale in a Active Directory Environment. I

first tried to use Powergui to get the information that I required by exporting all the computer

objects to a csv. When I opened the csv that I exported I could not find the attribute that

I was looking for. After a bit of searching I found the following script in Power Shell that worked

100%.

$old = (Get-Date).AddDays(-90)

The above is to create a variable that points to objects older than 90 days from the current date.

After running that then I ran the below script to get the information that I required. Bear in mind

that you require the Active Roles Management Shell for Active Directory from Quest.

Get-QADComputer -IncludedProperties pwdLastSet -SizeLimit 0 | where { $_.pwdLastSet -le $old } | select-object Name, ParentContainer, Description, pwdLastSet | export-csv c:\temp\outdated.csv

More here:

http://dmitrysotnikov.wordpress.com/2007/09/07/locate-obsolete-computer-records-in-ad/

Related Articles:

  1. Microsoft, patches and Blue Screens
  2. Power Shell in the Enterprise – Standards and Best Practices
  3. Offline Folders not Working in Windows 7 and SBS

You May Also Like

Microsoft Scripting Guy–Ed Wilson Guest Blog–PowerShell and WMI Discovery

Nicolas Blank 0

OCS 2007 Automatic Sign-In Troubleshooting Tool

Uwin Young 0

OCS Click to Call Accelerator for IE8

Uwin Young 0

Pin It on Pinterest