• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 401
  • Last Modified:

aduc reports misc (domain policy last amended)

I am trying to use ad users and comptuers to get a full list of servers in a domain, a full list of workstations in a domain, and also identify when the default domain password policy was last changed - any idea on these 3? By last changed I mean it recently became policy for domain passwords to have the complex (3/4 character sets represented). But we have loads of accounts that were setup to not expire, and I think most were setup before the domain password policy was changed

0
pma111
Asked:
pma111
  • 4
  • 3
1 Solution
 
Mike KlineCommented:
If you do a find in ADUC you can search for operating system there, you could also do it via an LDAP query.

There is a nice free GUI tool called adinfo that makes that easier   http://www.cjwdev.co.uk/Software/ADReportingTool/Info.html

Screenshot of the tool attached

In GPMC you can look at the modified date for the GPO.  That however just means the GPO was modified.  If there are other settings in the GPO they could have been changed.  To get more granular on what setting exactly was modified you would need to enable auditing and use a tool like AGPM or other third party tool.

More on group policy auditing here (question I helped with)   http://www.experts-exchange.com/Software/Server_Software/File_Servers/Active_Directory/Q_24534479.html


Thanks

Mike

adinfo-computer-version.jpg
GPMC-modified.jpg
0
 
pma111Author Commented:
so in advanced tab if I just chose field and "windows server" in starts as that will list every server?

Cheers
0
 
Mike KlineCommented:
The field for that would be operating system.

Thanks

Mike
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell┬« is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
pma111Author Commented:
I assume you cant see scheduled tasks per device in aduc?
Is there any remote tool to see scheduled tasks setup on a remote server?
Or do you know any tool that can? I couldnt see them in computer management console either.
0
 
Mike KlineCommented:
No not in ADUC, not sure about a remote tool, you can connect to the remote box   http://social.technet.microsoft.com/Forums/en/w7itproui/thread/b1e4edd1-c155-4e17-9056-c13e693c4a5a

you may want to open a separate question about that to get new eyes on it.

Thanks

Mike
0
 
pma111Author Commented:
0
 
pma111Author Commented:
That link seems for windows 7 - we are still on XP
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now