Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: Tools/Snap-ins for better AD User account management

Tools/Snap-ins for better AD User account management 8 years 2 months ago #27386

  • Stephanie
  • Stephanie's Avatar
  • Offline
  • Frequent Member
  • Posts: 55
  • Karma: 0
Does anyone know where I can find snap-in(s) to MMC Active Directory that give me more details on user accounts? I'm looking for login/logout dates & times?

Thank You,
Stephanie
The administrator has disabled public write access.

Re: Tools/Snap-ins for better AD User account management 8 years 2 months ago #27389

  • TheBishop
  • TheBishop's Avatar
  • Offline
  • Moderator
  • Posts: 1719
  • Thank you received: 8
  • Karma: 5
Hmm, no I don't. There are a few forums on the net with resources for those planning to write their own though. If anyone else knows of useful 3rd party snap-ins I'd be interested too
The administrator has disabled public write access.

Re: Tools/Snap-ins for better AD User account management 8 years 2 months ago #27391

  • S0lo
  • S0lo's Avatar
  • Offline
  • Moderator
  • Posts: 1577
  • Thank you received: 7
  • Karma: 3
Studying CCNP...

Ammar Muqaddas
Forum Moderator
www.firewall.cx
The administrator has disabled public write access.

Re: Tools/Snap-ins for better AD User account management 8 years 2 months ago #27393

  • KiLLaBeE
  • KiLLaBeE's Avatar
  • Offline
  • Expert Member
  • Posts: 466
  • Karma: 0
Login dates and times should be logged on the security log on event viewer of the DC that authenticated the user. In which case, you can use Event Viewer to connect to the DC and view the logs. If you aren't an administrator (or domain admin, in the case of a domain), you'll probably have to edit the DC's security policy to grant different user groups the rights to view audit logs. After you view event viewer, you just have to filter what you want to see.

Unfortunately, I may be wrong because I've actually never looked at the security logs of a DC on a production network that has DCs that ONLY run AD, so I can't say how crazy big the logs can be.

One other helpful feature that you can enable on Active Directory Users and Computers is Advanced Features. You may probably know this, but in case you don't (since I don't want to miss out the chance of revealing this cool feature 8) ), highlight the domain and go to View and click Advanced Features. Now when you look at the properties of a user account at the Object tab, you'll see the date that their user account was created, modified, and the specific location of their account. That's a bit outside the scope of your question, but in an environment with lots of OUs, it'll help to quickly find a user this way.[/i]
The administrator has disabled public write access.

Re: Tools/Snap-ins for better AD User account management 8 years 2 months ago #27452

  • ZiPPy
  • ZiPPy's Avatar
  • Offline
  • Expert Member
  • Posts: 500
  • Karma: 0
Alright, so we are seeking details on user accounts through Active Directory, mainly login/logout times. Many people inquire about this feature, including myself, because it can be very valuable to an administrator.

I have started to really dig down deep into Active Directory to really take advantage of all it has to offer. Another reason I am digging down deep to learn Active Directory is to implement Systems Management Server 2003 (SMS). Now you can do a lot with SMS, and I believe login/logout times is one of features that it provides, but don't quote me on that as I am very new to SMS. You can push Windows Updates to all workstations and servers on the network, so I would think the login/logout information will be provided.

Am I mistaken about this feature in SMS? Has anybody truly implemented SMS to its full potential?


Cheers,

ZiPPy
ZiPPy
The administrator has disabled public write access.

Re: Tools/Snap-ins for better AD User account management 8 years 3 weeks ago #28161

  • beexo
  • beexo's Avatar
  • Offline
  • Frequent Member
  • Posts: 78
  • Karma: 0
From what I have read "LimitLogin" does this. "Userlock" also does it. I have not tried either.
The administrator has disabled public write access.
Time to create page: 0.085 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup