Pau Lo
asked on
never logged in accounts in AD
For what purposes may an active directory account have never of logged on to the domain, but may still be serving a specific purpose. We have a report of accounts that have never logged into the domain, and IT are considering disabling some, but can an accountt hat has never logged in before still be doing "something", and thus shouldnt be disabled? Please share your views on what that "something" could be.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I say, No need to keep them just delete them. as they simply possess a security risk.
Even if the account is a service account, if it has never logged in then it is not doing much for the application that needs it.
Let your IT delete them.
Even if the account is a service account, if it has never logged in then it is not doing much for the application that needs it.
Let your IT delete them.
As example, some services may be set up on that account which is not allowed to log on to the system but may be running on it
Krzysztof
Krzysztof
ASKER
Can you provide some examples ?