Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

user accounts need to delete locked out and disabled

Status
Not open for further replies.
itopman

itopman

IS-IT--Management
Mar 23, 2004
20
0
0
GB
Does any one know of away how I can delete users accounts that are not used any more, we have a sever that has several hundred accounts and about 100+ of them are no longer used these have been disabled or locked out over aperiod of time and I would like to clean up accounts.

Doing this manually will take ages is their away of using a scribt to do it.

 
Sort by date Sort by votes
You can script to delete the user accounts, I'd be very afraid of deleting locked out accounts, how are you going to determine that an account wasn't just locked out and is still an active account?




I hope you find this post helpful. Please let me know if it was.

Regards,

Mark
 
Upvote 0 Downvote
Hi.. sorry for the delay been on leave (lucky me) You state that it can be scripted to remove these accounts and say that locked out accounts could exsist that are still in use (good point) but i am sure that these accidental locked out accounts would be very minimual compered to the number of old accounts so would not mind recreating one or two if deleted by accedent. Or a script that just takes out the disabled accounts would be a start as this is the majority that needs deleting.

But how can this be done any chance of some help here am only a network engineer not a programmer.
 
Upvote 0 Downvote
OK, I'll be happy to help you get to where you want to be. I need some info first. Are all of your users in the same OU?



I hope you find this post helpful. Please let me know if it was.

Regards,

Mark
 
Upvote 0 Downvote
Yes all are in the default 'Users' location

regards

Brian
 
Upvote 0 Downvote
Hi Brian, thanks for the update. I'll see what I can do to get some code to you this week unless someone else already has some. This week is a little hectic for me as I am travelling from Friday to Monday, so I may not be able to get back to you on this till next week.

I hope you find this post helpful. Please let me know if it was.

Regards,

Mark
 
Upvote 0 Downvote
HI.. any one got any more info on this post, it is now becomming more urgent to get these user accounts cleaned up.
regards

ITOpMan
 
Upvote 0 Downvote
Hi Brian, sorry I have not forgotten you. Spent the day battling a Spoof attack. Nice welcome back after travelling for the holiday weekend. I don't currently have access to my test server so I have no code to give you yet. If anyone else has something they will hopefully post it. Otherwise I'll post ASAP.

I hope you find this post helpful. Please let me know if it was.

Regards,

Mark
 
Upvote 0 Downvote
this is using the winnt provider which i hate but im in a hurry!!(use winnt when you know where the objects you are after are located, use adsi when you want to search or do something clever with a recordset type affair)

Set Container = GetObject("WinNT://" & DomainName)
Container.Filter = Array("user")
For Each User In Container
If User.AccountDisabled = True Then
Wscript.Echo User.Name
End If
Next

'all you need to is add/change the domainname and what you want to do with a disbled account
 
Upvote 0 Downvote
if you are serious about AD, nt domain manips, LDAP etc then buy this book
'adsi scripting for system administration'
 
Upvote 0 Downvote
Nice script MrMovie. I've been working on an LDAP version so it would do the searching.

I hope you find this post helpful. Please let me know if it was.

Regards,

Mark
 
Upvote 0 Downvote
HI..sorry for the delay in checking this reply out but been busy taking my last couple of MCP for mcse.

I know nothing about scripting hence asking the question on this great site, what would I have to add to delete the disabled accounts found.

Perhaps do a script for disabled accounts first then locked out accounts that way I can scan through locked out accounts incase their are a few that do need to be kept.

again thanks for the reply

ITOpMan
 
Upvote 0 Downvote
If your using Windows 2003 server/AD, you can type in:

dsrm - users disabled

at a command prompt. It will search your active directory for all disabled users and remove them. This will only work with 2003 though. Otherwise, you'll have to script it, and the guys working with you already are some of the best out there.
 
Upvote 0 Downvote
HI.. unfortunately its only a 2000 server so need a script to find these objects.

ITOpMan
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Palito1916
  • Locked
  • Question
Disable multiple computer accounts using TXT file with computer names
Replies
2
Views
97
Palito1916
Palito1916
Brianfree
  • Locked
  • Question
Excel Rows to Column 1
Replies
2
Views
135
Brianfree
Brianfree
Rick_Stanich
  • Locked
  • Question
Save xls file to cvs file 1
Replies
3
Views
114
Rick_Stanich
Rick_Stanich
Don Child
  • Locked
  • Question
JScript to search for specific outlook emails, and download attachments 2
Replies
8
Views
106
Eric J
Eric J
busy_bee
  • Locked
  • Question
Autofilter and Delete
Replies
2
Views
110
busy_bee
busy_bee

Part and Inventory Search

Sponsor

Back
Top