What's new
By:
Filters
ClioSport.net

Register a free account today to become a member!
Once signed in, you'll be able to participate on this site by adding your own topics and posts, as well as connect with other members through your own private inbox!

  • When you purchase through links on our site, we may earn an affiliate commission. Read more here.

Active Eirectory Experts - Queries



J

*JimmyJ*

  E39 530i
Need to find out if a user logged on to the network after a particular time on a day. What would be the query I would run through active directory :S
 
L

Longy

  Fiesta ST
Search the event viewer as long as you had the audit enabled for the logons/logoff?

Use Filters.
 
D

DMS

  A thirsty 172
If you haven't altered the auditing settings via group policy (or via the local policy on the DC's or workstations), then both the workstation in question and the authenticating Global Catalog server should have audited the logon event.
It'll be logged in the event viewer under the Security item as a success audit. By default, failure audits aren't enabled for account logon events so you won't be able to see any failed logons.
 
Mike_182

Mike_182

  Better than yours. C*nt.
Aye, successful logon events for that user account. You'll have to check all DCs as well...
 
You must log in or register to reply here.

Similar threads

C
Clio Mk2 Phase 1 - 2001 Petrol. No power to fuel pump - Fuse?, Relay?, Diagram?
Replies
8
Views
650
G Hut
G Hut
BIFCAIDS
Samsung Active Watch
Replies
16
Views
1K
Krarl
Krarl
W
Cisco vs Extreme Networks
Replies
2
Views
1K
Krarl
Krarl
MarkCup
Accepting one-off customer payment by Credit Card...?
2
Replies
49
Views
3K
MarkCup
MarkCup
A
ABS Pump/ECU Replacement
Replies
1
Views
530
smclt30p
S


Top