Solved

Local admin logon reporting script

Posted on 2011-09-21
3
206 Views
Last Modified: 2012-05-12
I run a user logon script that writes each domain user's logon and off times to a text file. Works great. I also now need a script that I can push to all domain computers that will record each time that the machine's local administrator logs on and off. I know that some users have been given the admin password for machines and need to find out which machines are being used. Don't want to change all local admin machine passwords yet!

Thanks in advance for any help.

Gill
0
Comment
Question by:gillpardesc
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 7

Accepted Solution

by:
Dusan_Bajic earned 250 total points
ID: 36579072
It is little unclear, you already have a script that writes time when someone logs in. Will it not record when local admin logs in, same as for any other user? It could be so if script is pushed to domain users only, but then all you have to do is to apply script to domain computers.  
0
 
LVL 8

Assisted Solution

by:jawa29
jawa29 earned 250 total points
ID: 36707988
Hi Gill

Am I right in thinking that the current script is either set by the users AD account? or on Group Policy?

Group Policy objects only apply to AD accounts, the Computer section does apply to the local Machine but has no option to run a Logon script only Start up scripts.

You have a few options to achieve this. (all of these options will run the script when any user logs in, including Domain Users)

1. Edit the local User Policy to add the script you already have gpedit.msc

2. Add your script to the Run key in HKLM\Software\Microsoft\Windows\CurrentVersion\Run

3. Set-up a scheduled task to run everytime a user logs in

2 & 3 could be set-up through a startup script on the Machine.

Jawa29
0
 

Author Closing Comment

by:gillpardesc
ID: 37254465
Abandoned this but thanks to those who replied
0

Featured Post

Online Training Solution

Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action. Forget about retraining and skyrocket knowledge retention rates.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article shows the method of using the Resultant Set of Policy Tool to locate Group Policy that applies a particular setting.
Recently, Microsoft released a best-practice guide for securing Active Directory. It's a whopping 300+ pages long. Those of us tasked with securing our company’s databases and systems would, ideally, have time to devote to learning the ins and outs…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question