Solved

ad report non-expiring accounts

Posted on 2013-12-19
6
236 Views
Last Modified: 2014-01-02
I need an AD report ideally using a free tool/command line tool to list all AD users who are exempt from password expiry including the fields

username, password last set date, status (i.e. disabled/enabled).

Please provide recommendations on the tool and the appropriate syntax.
0
Comment
Question by:pma111
6 Comments
 
LVL 3

Author Comment

by:pma111
ID: 39728868
can it be done in adfind? http://www.joeware.net/freetools/
0
 
LVL 19

Accepted Solution

by:
helpfinder earned 500 total points
ID: 39728897
without need to install anything special you can use AD Users and computers and create query here - non-expiring passwords
you will get list of users with password set to never expires and their names, also you can see if it is disabled or not (or you can do a similar query for disabled accounts)
You wont see last changed password in the table but in each user attribute properties you should be able to see also this.
If this is not sufficient for you I guess you can achieve this using PowerShell

sample
0
 
LVL 3

Author Comment

by:pma111
ID: 39728910
in add/remove columns, which column will show "account status". I couldnt see anything obvious. In fact I have added all columns and I cant see which are disabled/enabled. I cant check them all manually as there are >1000 accounts.
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 3

Expert Comment

by:Detlef001
ID: 39728948
Please have a look at this application. Its freeware but up to some limitation on the number of users.

Hope it helps.

Thanks.
0
 
LVL 3

Author Comment

by:pma111
ID: 39728956
The first solution worked if I ticked both options, but ideally I wanted a single report, i.e all non expiring accounts, and then their status (i.e. enabled/disabled), rather than 2 reports for the 2 different criteria, but maybe I can merge them in some other software like access.
0
 
LVL 53

Expert Comment

by:Will Szymkowski
ID: 39729033
You can accomplish this using the Native powershell commands. See below...

Import-module activedirectory
Get-ADUser -Filter * -Properties * | ? {$_.PasswordNeverExpires -eq "true"} | select name, samaccountname, PasswordNeverExpires, Enabled

Open in new window


Will.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I'm sure that every Windows systems administrator has written, or at least used, a batch or VBS login script at some point in their career, whether it is to map network drives, install printers, or set some user preferences.  No more! With Window…
I know all systems administrator at some time or another has had to create a script to copy file from a server share to a desktop. Well now there is an easy way to do this in Group Policy. Using Group policy preferences is not hard. The first thing …
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now