Link to home
Start Free TrialLog in
Avatar of jbishop2446b
jbishop2446bFlag for United States of America

asked on

Reporting on user's log in/out times in Active Directory without using the event log

Hello everyone, a department manager I work with is asking for a way to report on selected users for when they log in/out of the network (Active Directory) and the only way I know of is in the event logs and depending on what domain controller they authenticate on it's then logged into that event log on that server.  Does anyone know if Microsoft has a more efficent way to see this data or maybe a 3rd party product for this?

Thank you everyone.
Avatar of Bradley Fox
Bradley Fox
Flag of United States of America image

Link to home
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
You could create a simple logon/logoff script, example below

event logs like you said can track it but consolidating and searching them can be a pain depending on how many DCs you have.


I forgot to mention in case it's not obvious; my code is in vbscript (.vbs).
Avatar of jbishop2446b


Thank you so much! I'm going to try this out now, I've never used a logoff script but will figure that out in AD.  I'll come back soon and accept the solution!  ;)
Thank you "mcsween"!  I have a .vbs script I use for mapping sharepoint to a network drive and will test your solution out.  J
You can do logon and logoff scripts from Group Policy.

User Configuration, Windows Settings, Scripts (Logon/Logoff)
Avatar of palicos

You have two ways to do this without event log.

First, you can use this link to audit the login/logout activity of the users.

Moreover, in case you dont want to use the logs then you can use third party tool for AD auditing but these tools are not free.
FANTASTIC, thank you so much and sorry for getting back to you so late.  I just recently implemented.