AD Whenchanged – Identify list of machines that have not had a password change in 60 days or greater

March 28, 2011

Working with a customer today and all of their existing machines went back on lease. There was not a proper process in place to decomission the old AD machine accounts and SCCM records out of the site database.

To assist with the short term need to cleanup the old records, we first created the “whenchanged” attribute in AD System Discovery. This attribute once collected can then be used to create a query against all systems that have not had their machine account password changed in x amount of days. In this specific environment, we specified 60 days as the threshold. The query below was used to pull back all machines whose password’s have not changed in the last 60 days:

select SMS_R_SYSTEM.ResourceID, SMS_R_SYSTEM.ResourceType, SMS_R_SYSTEM.Name, SMS_R_SYSTEM.SMSUniqueIdentifier, SMS_R_SYSTEM.ResourceDomainORWorkgroup, SMS_R_SYSTEM.Client from SMS_R_System where (DateDiff(day, whenChanged, GetDate()) > 60)

Hope you find this useful!

Matt Tinney

Professional IT executive & business leader having decades of experience with Microsoft technologies delivering modern-day cloud & security solutions.

Contact Us

Intune

Restrict Computer to a Windows 11 Version

At some point, you may need to lock a computer to a specific version of Windows 11. This could be because of a compatibility issue with a critical app or device, the need to maintain more

October 15, 2025

Microsoft EndPoint Management

Sync ConfigMgr Collections to Intune

ConfigMgr collection sync is a feature that has been in ConfigMgr for a few versions. At a high level, it syncs the membership of a collection to a group in Entra ID that can then be

October 10, 2025

Active Directory

The Secret Role of HR Tech in M&A Success and Post-Merger Integration

Mergers and acquisitions promise growth, but the operational aftermath often reveals a deeper challenge… It involves integrating people, systems, and processes. While most attention stays on financials, contracts, and branding, the complexity of unifying HR systems

September 4, 2025

Azure

WME Microsoft 365/Azure Updates 22 August 2025

1. Exchange Online: Temporary Mailbox Access Disruption via MAPI Overview Some Exchange Online users experienced mailbox access issues via the Messaging API (MAPI) on August 20, 2025. The disruption occurred after Microsoft reverted a recent service

August 22, 2025

Active Directory

HR Data Chaos: How Centralized HRIS Solves Fragmentation in Growing Firms

Growth in your organization often exposes what scale often conceals… Disjointed HR systems stitched together via inefficient manual effort and fragile workflows. Payroll lives in one platform, benefits in another, identity data floats untethered in AD,

August 19, 2025

Active Directory

Chatbots in HR: Just Hype or the Future of Employee Support?

HR chatbots are not futuristic ambitions anymore. Certainly, they are now workflow enablers. At their core, these AI agents interface between employees and backend systems. They answer queries, trigger actions, surface personalized information, and whatnot. But

August 19, 2025

AD Whenchanged – Identify list of machines that have not had a password change in 60 days or greater

Share:

Matt Tinney

Contact Us

More Posts

Restrict Computer to a Windows 11 Version

Sync ConfigMgr Collections to Intune

The Secret Role of HR Tech in M&A Success and Post-Merger Integration

WME Microsoft 365/Azure Updates 22 August 2025

HR Data Chaos: How Centralized HRIS Solves Fragmentation in Growing Firms

Chatbots in HR: Just Hype or the Future of Employee Support?

Have Questions? We Have Answers

KEEP IN TOUCH

Managed Services

Professional Services

Staffing

Industries

Resources

About