dsquery user OU=xxx, DC=yyy,DC=ZZZ
but I don't know what should go after that. I also tried the dsquery group
method with no luck. Does anyone know the correct way??
Thanks!
Bob Randall
If you need to specify a server and/ or credentials, append the following on
the end:
-s dc01 -u userName -p *
--
Paul Williams
dsget failed:A referral was returned from the server.
Any ideas what this is?
--
Paul Williams
Microsoft MVP - Windows Server - Directory Services
http://www.msresource.net | http://forums.msresource.net
What else can you tell me about your environment?
Try the same thing with adfind (download from www.joeware.net)
adfind -b cn=group,cn=users,dc=domain-name,dc=com member -nodn
Sorry, Can you help me to give a dsquery command to get all inactive
domain clients from specific OU?
Thanks,
Nap
--
ntumanguil@hotmail
------------------------------------------------------------------------
ntumanguil@hotmail's Profile: http://forums.techarena.in/members/153755.htm
View this thread: http://forums.techarena.in/active-directory/76662.htm
After checking the dsquery syntax help at a command prompt, I got:
dsquery user "ou=Sales,ou=West,dc=MyDomain,dc=com" -inactive 4
This queries for users in the specified OU that have not logged on in the
last 4 weeks. However, the domain must be at Windows 2003 functional level
for this to work. Otherwise you can use:
dsquery user "ou=Sales,ou=West,dc=MyDomain,dc=com" -stalepwd 30
to find users that have not changed their password in the specified number
of days. Or, if your domain does not support -inactive and you don't want to
use -stalepwd, you can run a VBScript program that retrieves the lastLogon
attribute for all users. Such a program must query every Domain Controller
in the domain. See this link:
http://www.rlmueller.net/Last%20Logon.htm
--
Richard Mueller
MVP Directory Services
Hilltop Lab - http://www.rlmueller.net
--