• Status: Solved
• Priority: Medium
• Security: Public
• Views: 115

Hi,
I am using ADFind to list my AD users. I would like to add the account expirations if possible. Here is the current script that gives me all the users with their names:

adfind -default -f "&(objectcategory=person)(objectclass=user)" samaccountname displayname -csv > c:\users.csv
Is this possible?

Thank you
0
• 5
• 4
1 Solution

Commented:
Do you want to continue using adfind, or powershell?
0

Commented:
Use to luv me some joeware!!
adfind -default -f "&(objectcategory=person)(objectclass=user)" samaccountname displayname accountexpires -csv > c:\users.csv


You prolly can't really read it though, cause it is in MS speak....
0

Author Commented:
Me love joeware too! However the dates came back as: 9.22337E+18

Thank you
0

Commented:
That's what I said. I don't think you can use that particular Joeware tool for that, not natively anyway.
open an elevated powershell session and try this:
import-module activedirectory
Get-AdUser -Filter * -Properties * | Select SAMAccountname, DisplayName, AccountExpirationDate | Export-CSV -Path C:\path\to\folder\file.csv

Change the path to wherever you need the exported file.
0

Author Commented:
I ran the last script in the elevated powershell as directed. It returned the names but no expiration dates. The column was there but they were all blank.
0

Commented:
Are the accounts set to "not expire"? Spot check and see if an account actually has an expiration date.
0

Author Commented:
Ah ha! That is it. Hey, thanks for your help. Would you want to throw in a lookup for expiring passwords?
0

Commented:
get-aduser your-user-name -properties *


This will give you all the properties for your AD account, then find the one(s) you want and add it to the command I gave you above. :)
0

Author Commented:
Thanks again
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.