Nixadmins.net

I noticed our Active Directory domain and Windows Server Update Services had a small difference of about 200 workstations.

The forgotten computers

Naive as I was I never thought that we could “forget” 200 workstations in our domain. So I had to find a tool to get the job done. Luckily I found oldcmp at Joeware.net. This small 222kb tool promised to do what I needed done and I could even get a report in HTML, CSV or DHTML.

Using OldCmp

The use of this program is more than simple, but beware, don’t use delete unless you really now the computer accounts are dead.
The program has a few safeguards to keep you from doing something really bad, so I won’t show you anything other here than how to get a report from your Active Directory. If you want to delete or disable computers read the help.

Listing computers that haven’t changed their password in 90 days

Getting some help

Listing computers that haven’t changed their password for more than 120 days

I settled for computer that haven’t changed their password for more than 120 days, there were still a few computers in use, but we quickly sorted them out and could now disable almost 200 computer accounts from our Active Directory.

Users instead of computers

You can also check dead users by giving the program the user switch.

The above obviously checks for users who haven’t changed their password in more than 120 days.
Also check out the other magnificent tools you can find at Joeware.net.