A
AndyMac
Hi,
I'm trying to implement a View filter in AD to only show the expired &
disabled user accounts but I'm having a few problems doing this. There
doesn't seem to be an easy "point & click" way to do this in the MMC so I'm
looking at custom LDAP queries.
I've found that - (userAccountControl:1.2.840.113556.1.4.803:=2) - filters
out all but the disabled accounts which gets me halfway there. I've no idea
what the settings for this should be for expired accounts (note: I've seen
settings for expired passwords, but it's expired accounts I'm interested
in).
Does anyone know which query I should be using? Alternatively, does anyone
know a better way to do this?
Thanks,
AndyMac.
I'm trying to implement a View filter in AD to only show the expired &
disabled user accounts but I'm having a few problems doing this. There
doesn't seem to be an easy "point & click" way to do this in the MMC so I'm
looking at custom LDAP queries.
I've found that - (userAccountControl:1.2.840.113556.1.4.803:=2) - filters
out all but the disabled accounts which gets me halfway there. I've no idea
what the settings for this should be for expired accounts (note: I've seen
settings for expired passwords, but it's expired accounts I'm interested
in).
Does anyone know which query I should be using? Alternatively, does anyone
know a better way to do this?
Thanks,
AndyMac.