Rule description
This rule is designed to query Active Directory for computer accounts that meet specific inactivity criteria. It allows you to filter computer objects based on various parameters, such as the last logon date and helps you identify inactive computer accounts in your environment.
You can limit the query scope to a specific Organizational Unit (OU) and customize the query criteria to return only the desired computer accounts, ensuring precise and efficient results.
When to use this rule
Use this rule when you need to find computers in Active Directory that are inactive based on the defined criteria. This rule is often used for decommissioning inactive devices, optimizing licensing costs, or maintaining an updated inventory of active assets.
The AD Computers Inactive rule is applicable in the following scenarios:
- Inventory Cleanup: Identify inactive or stale computers that haven't been logged into or used in a specific timeframe.
- Security: Locate dormant machines that could pose a security risk if not properly monitored or decommissioned.
- Automation: Use this rule in conjunction with other tasks, such as disabling inactive computers, moving them to a different OU, or removing them from Active Directory.
Rule Settings
Query Section
Setting name | Description |
---|---|
Limit scope to this domain or OU |
This setting defines the search query scope. To improve query performance, limit the scope to specific OU.
Important: To test rule configuration, limit the rule scope to an OU that contains test accounts or objects.
|
Number of Inactive Days |
Define the number of days a computer must be inactive to be considered as such by the rule. The inactivity is typically determined by the computer's last logon date in Active Directory. For example, if the rule is set to 30 days, any computer that has not logged into the domain in the last 30 days will be identified as inactive. |
Minimum Age (Days) |
Specify the minimum number of days since the computer object was created in Active Directory for it to be included in the query. For example, if the Minimum Age is set to 90 days, only computers that were created more than 90 days ago will be checked for inactivity. This helps to exclude newly added computers from the query results. |
Enabled |
Select the checkbox to enable the rule. |
Other Query Settings |
|
Returned Properties |
To display additional properties for each object found by the query, add those properties to the list. |
Sort by |
Sort result object list. |
Output Section
This section defines the output format of this rule.
To get more information about this section, please see the Output section article.
Enforce/Schedule section
This section defines the schedule for how often to run the rule.
To get more information about this section, please see the Enforce/Schedule section article.
Comments
0 comments
Article is closed for comments.