AD Whenchanged – Identify list of machines that have not had a password change in 60 days or greater

March 28, 2011

Working with a customer today and all of their existing machines went back on lease. There was not a proper process in place to decomission the old AD machine accounts and SCCM records out of the site database.

To assist with the short term need to cleanup the old records, we first created the “whenchanged” attribute in AD System Discovery. This attribute once collected can then be used to create a query against all systems that have not had their machine account password changed in x amount of days. In this specific environment, we specified 60 days as the threshold. The query below was used to pull back all machines whose password’s have not changed in the last 60 days:

select SMS_R_SYSTEM.ResourceID, SMS_R_SYSTEM.ResourceType, SMS_R_SYSTEM.Name, SMS_R_SYSTEM.SMSUniqueIdentifier, SMS_R_SYSTEM.ResourceDomainORWorkgroup, SMS_R_SYSTEM.Client from SMS_R_System where (DateDiff(day, whenChanged, GetDate()) > 60)

Hope you find this useful!

Matt Tinney

Professional IT executive & business leader having decades of experience with Microsoft technologies delivering modern-day cloud & security solutions.

Contact Us

Active Directory

Mastering Azure AD Connect – A Comprehensive Guide

Modern businesses are fast moving toward cloud-based infrastructure. In fact, cloud-based business is not just a trend anymore but a strategic necessity. Microsoft’s Azure Active Directory (Azure AD) has become a frontrunner in this domain. It

December 4, 2023

Office 365

Security Best Practices in SharePoint

Microsoft SharePoint is an online collaboration platform that integrates with Microsoft Office. You can use it to store, organize, share, and access information online. SharePoint enables collaboration and content management and ultimately allows your teams to

November 25, 2023

Cloud Based Management

What to Look for in Cloud Security? How Managed Service Providers Can Help You Secure Your Cloud-based Business?

The need to use cloud computing and make it all secure has never been more pronounced. Organizations are fast turning to the cloud to fulfill their computing needs and their concerns for the security of the

November 24, 2023

WME Article: Windows Server Backup vs. Third-Party Backup Solutions

Server Administration

Windows Server Backup vs. Third-Party Backup Solutions: Which One Is Right for You?

In the realm of data protection, the choice between Windows Server Backup (WSB) and third-party backup solutions is a critical decision. Backup and Recovery solutions are crucial to maintaining the integrity of your data and operations.

November 21, 2023

Active Directory

The Ultimate Guide to Microsoft Intune

The corporate world is evolving fast. And with that, mobile devices are spreading everywhere. As we venture into the year 2024, they have already claimed a substantial 55% share of the total corporate device ecosystem. You

November 7, 2023

Protecting Microsoft 365 from on-Premises Attacks

Cloud Security

How to Protect Microsoft 365 from On-Premises Attacks?

Microsoft 365 is diverse enough to enrich the capabilities of many types of private businesses. It complements users, applications, networks, devices, and whatnot. However, Microsoft 365 cybersecurity is often compromised and there are countless ways that

November 2, 2023

AD Whenchanged – Identify list of machines that have not had a password change in 60 days or greater

Share:

Matt Tinney

Contact Us

More Posts

Mastering Azure AD Connect – A Comprehensive Guide

Security Best Practices in SharePoint

Windows Server Backup vs. Third-Party Backup Solutions: Which One Is Right for You?

The Ultimate Guide to Microsoft Intune

How to Protect Microsoft 365 from On-Premises Attacks?

Have Questions? We Have Answers

KEEP IN TOUCH

Managed Services

Professional Services

Staffing

Industries

Resources

About

Get WME Services