My main domain has around 25K users, that is a SMB to Brian :-] -----Original Message----- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Wednesday, June 16, 2010 8:49 AM To: NT System Admin Issues Subject: Re: Password policy enforcement after a change
On Wed, Jun 16, 2010 at 11:32 AM, Free, Bob <r...@pge.com> wrote: > I respectfully disagree that one is as good as the other in this > particular case but to each his own. I think the LDAP query approach is far more flexible and powerful, so it's good to be aware of the capability and have it available. Thanks for posting it. Now that I realize ADFIND isn't something I'm already supposed to have, I can go get it. :-) But my current task is to answer the question, "Who hasn't changed their password recently?" For that, either "tool" (<grin>) will work. So I agree with both of you. :-) > "... a small domain with a couple thousand accounts ..." Heh. One thing this list teaches me is that everyone's idea of "small" and "large" is different. Our domain has 178 accounts, and a fair number of those are disabled accounts only kept around to keep SID lookups working. To me, "a couple thousand" is large. :-) -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
