Find out when a PC was last used through AD

Posted on 2009-02-11
Last Modified: 2012-05-06
Hi Guys,
Is there any way of finding when a PC or Laptop last connected or interacted with the domain and by who ?
We have around 112 computers in the OU of which i think only 40 are now used. The others i think are older ones that have been destroyed/ removed etc but i need to make sure they haven't been used in any way for a period of time (say 6 months).
I know there used to be an AD command to do something similar but can't remember what it is or if this would work ?
Failing this any 3rd party tool would help

Question by:Netexperts
    LVL 19

    Expert Comment

    LVL 24

    Accepted Solution

    LVL 19

    Expert Comment

    If you are just after expired computer accounts my first link will do the job  If any machine accounts have not contacted AD for six months their computer account passwords will probably have expired in any case!  Saves you $99.  
    LVL 1

    Author Closing Comment

    That response was too quick to be believed !!
    Points to ryansoto as we have a windows 2000 native domain and dsquery didn't work. But thanks for the response.
    LVL 18

    Expert Comment

    We have Enterprise Security Reproter from It's not cheap but can pretty much allow you to run report against your AD almost anyway you want. You can find out all PC not connected to your AD 30, 60, etc days. Of course this product also allow you to run report on a lot of other security related info of your AD objects as well as file server security etc.

    Here's a screen capture as to what this product can do for you:


    Featured Post

    How your wiki can always stay up-to-date

    Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
    - Increase transparency
    - Onboard new hires faster
    - Access from mobile/offline

    Join & Write a Comment

    Suggested Solutions

    Do you have users whose passwords are expiring and they are constantly calling you?  Well I sure did and needed a way to put an end to this.  We have a lot of remote users which would not be notified that their passwords were expiring since they wer…
    ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
    This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
    This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

    745 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    16 Experts available now in Live!

    Get 1:1 Help Now