Solved

aduc reports misc (domain policy last amended)

Posted on 2011-09-08
7
390 Views
Last Modified: 2012-05-12
I am trying to use ad users and comptuers to get a full list of servers in a domain, a full list of workstations in a domain, and also identify when the default domain password policy was last changed - any idea on these 3? By last changed I mean it recently became policy for domain passwords to have the complex (3/4 character sets represented). But we have loads of accounts that were setup to not expire, and I think most were setup before the domain password policy was changed

0
Comment
Question by:pma111
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
7 Comments
 
LVL 57

Accepted Solution

by:
Mike Kline earned 500 total points
ID: 36502955
If you do a find in ADUC you can search for operating system there, you could also do it via an LDAP query.

There is a nice free GUI tool called adinfo that makes that easier   http://www.cjwdev.co.uk/Software/ADReportingTool/Info.html

Screenshot of the tool attached

In GPMC you can look at the modified date for the GPO.  That however just means the GPO was modified.  If there are other settings in the GPO they could have been changed.  To get more granular on what setting exactly was modified you would need to enable auditing and use a tool like AGPM or other third party tool.

More on group policy auditing here (question I helped with)   http://www.experts-exchange.com/Software/Server_Software/File_Servers/Active_Directory/Q_24534479.html


Thanks

Mike

adinfo-computer-version.jpg
GPMC-modified.jpg
0
 
LVL 3

Author Comment

by:pma111
ID: 36503016
so in advanced tab if I just chose field and "windows server" in starts as that will list every server?

Cheers
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 36503106
The field for that would be operating system.

Thanks

Mike
0
Free eBook: Backup on AWS

Everything you need to know about backup and disaster recovery with AWS, for FREE!

 
LVL 3

Author Comment

by:pma111
ID: 36503146
I assume you cant see scheduled tasks per device in aduc?
Is there any remote tool to see scheduled tasks setup on a remote server?
Or do you know any tool that can? I couldnt see them in computer management console either.
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 36503216
No not in ADUC, not sure about a remote tool, you can connect to the remote box   http://social.technet.microsoft.com/Forums/en/w7itproui/thread/b1e4edd1-c155-4e17-9056-c13e693c4a5a

you may want to open a separate question about that to get new eyes on it.

Thanks

Mike
0
 
LVL 3

Author Comment

by:pma111
ID: 36503277
0
 
LVL 3

Author Comment

by:pma111
ID: 36503312
That link seems for windows 7 - we are still on XP
0

Featured Post

Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Here's a look at newsworthy articles and community happenings during the last month.
After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question