Why do some user accounts show up as never used?

  • Thread starter Adrian Rodriguez
  • Start date
A

Adrian Rodriguez

We have many Mac users who's windows account is only used for getting email
or having access to a share. They do not login to a Windows PC anywhere.

The problem is that when looking over these users accounts, they show up as
never being logged into. Our method of weeding out unused user accounts is
hampered by this anomaly.

Any suggestions?
 
T

Tilmon Wooden

We have many Mac users who's windows account is only used for getting email
or having access to a share. They do not login to a Windows PC anywhere.

The problem is that when looking over these users accounts, they show up as
never being logged into. Our method of weeding out unused user accounts is
hampered by this anomaly.

Any suggestions?
Click to expand...

I've had that same problem until I've found out about the MSUAM.

Try downloading the "Microsoft User Authentication Module" (MSUAM).

(http://download.microsoft.com/download/win2000srv/Install/1/MacOS/EN-US/MSU
AM_for_X.hqx)

There is also one for anyone using OS9.2 or Classic

(http://tc.versiontracker.com/product/redir/lid/137191/MSUAM_for_Classic.hqx
)

See the link below for details

http://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/Serve
rHelp/a8f0fddc-c539-4e02-b313-f6d86515b08f.mspx
 
A

Adrian Rodriguez

Thanks for this info. I have tried it on OS9.? and OS10.? (i'm not the mac
guy but I can get around) and it works well. They can now change passwords
even with more than 8 characters. They also get notification they need to
change it. Great!

BUT - the DCs still do not record the logon as they do with a PC logging in.
The logontimestamp does not get changed. I created a virgin account and only
used it logging on with the MAC and it still never recorded any logon
timestamps on the DCs. So I still can only determine if the accounts are
being used by the PwdExpires attribute. The server holding the share has a
log of the access and the record shows NTLM authentication was used - not
exactly NTLMv2 which I expected.

SO - I am going to try to test how the NTLMv2 works. It looks as if now they
are still actually using plain ntlm as the server had needed to be set to
allow this. I set up a new test server with the local security policy set to
a higher standard - NTLMv2 only. I'll let you know how it works out.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Them delivery services - some good, some not so good 3
Cannot delete User Accounts 2
Hacking suprise, so beef up your protection 0
Risk of disableing "user account control" 2
User Account Not Showing Up On Login Screen 2
Exchange accounts with multiple email domains 2
Redirecting My Documents 9
Windows XP login, hijacked by Media Center 4

Top