Solved

Need to remove dormant computer accounts from active directory.  What's a good (paid or free) solution?

Posted on 2014-09-03
3
439 Views
Last Modified: 2014-09-04
Need to remove dormant computer accounts from active directory.  What's a good (paid or free) solution?  

Also, does anyone know the default setting (in days) in which a computer account's status changes and must be re-added to the domain?  Thanks.
0
Comment
Question by:LB1234
3 Comments
 
LVL 14

Accepted Solution

by:
Brad Groux earned 400 total points
ID: 40301143
The term you are looking for is "stale," specifically stale computer objects. This TechNet blog post takes you through all of the steps - http://blogs.technet.com/b/ken_brumfield/archive/2008/09/16/identifying-stale-user-and-computer-accounts.aspx

Here is a script to find stale computer objects in Active Directory - http://gallery.technet.microsoft.com/scriptcenter/7bc5bc1c-e934-4ce1-8a77-3b0105807402

Here's one that utilizes Quest's free tools - http://gallery.technet.microsoft.com/Active-Directory-Stale-f775cc22

If a machine is offline more than 30 days it may become stale. Best practice is generally to query machines who have been offline for 90+ days. Stale machines won't be kicked from the domain, if they are plugged in or attached to the domain at any time they can log back in... thus, it is a good idea to clean out stale objects from time to time.

This blog post shows you how you can send out an automated email with stale accounts - http://pipe2text.com/?page_id=121
0
 
LVL 22

Assisted Solution

by:Joseph Moody
Joseph Moody earned 100 total points
ID: 40301150
Brad pretty much got you covered. If you prefer safety, you can disable the stale objects and move them to a dedicated OU. After a certain period, you can delete those objects.

http://deployhappiness.com/managing-stale-computers-and-users/
0
 
LVL 1

Author Closing Comment

by:LB1234
ID: 40303295
I wound up using AD Manager Plus from Manage Engine, but thanks!
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you start your Windows 10 PC and got an "Operating system not found" error or just saw  "Auto repair for startup" or a blinking cursor with black screen. A loop for Auto repair will start but fix nothing.  You will be panic as there are no back…
Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question