Active Directory Password Reports

DSRAZOR for Windows

The Windows Active Directory Password Reports provided by DSRAZOR for Windows provides you with the ability to comprehensively audit your vital Active Directory password settings. When you Audit your Active Directory with DSRAZOR for Windows, you can filter on almost any Active Directory attribute or combination of attributes. For instance, you might need to find all accounts whose password settings do not match your enterprise standard.

DSRAZOR for Windows provides many ready-to-run reports to help you Audit and Document your Active Directory password settings. A sample of these reports follows. DSRAZOR for Windows allows you to customize any of these reports to report on exactly what data you want. In addition, you can also enhance the reports with buttons to manage these password setttings and set the settings in bulk so all selected users in the report have the same password settings.

User Accounts with Password problems

DSRAZOR for Windows searches for Active Directory accounts within a specific Active Directory container branch or DNS Domain Root with one or more of the following irregularities:

  • Expiration interval has not been set or is greater than 45 days.
  • No password is required
  • Password is expired
  • Account user cannot change their own password

Password Security Settings for User Accounts

DSRAZOR for Windows will find all user accounts in the selected Organizational Unit branch or selected Domain Root. It will display information for:

  • Days since last password change
  • Password never expires
  • No password is required
  • Password is expired
  • Account user cannot change their own password

Active Directory Cleanup and Security of Users and Computers

Improve your Active Directory performance and security by removing unused users and computers. Quickly find all inactive, disabled, unused users and computers and with just a click of a button choose to delete, disable or move to another container. Improve security by updating security attributes to any list of users with a click of a button.

Cleanup of unused user and computer accounts:

  • Smart User Delete (Deletes: User Account, Exchange Account and Home Directory!)
  • Find accounts unused for past x days and disable or delete account
  • Find disabled accounts and delete or enable account
  • Find accounts locked or expired and delete or disable and rename account
  • Find accounts that never expire and set expiration date
  • Find accounts where last logon failed and disable account
  • Move User and Computer objects to a new container or Organizational Unit (OU) in the same domain
  • Move Users Home Directory
  • Find Computer Accounts where the Password Last Set was more than 45 days ago, delete computer
  • Find user accounts with no Home Directory and assign one
  • Add Profile Path to user accounts without one

Security Settings for User Accounts:

  • Remove "Password Never Expires" for Active Directory Users
  • Remove "Password Not Required" for Active Directory Users
  • Remove "User cannot change password" for Active Directory Users
  • Assign Single-Use Password for selected Active Directory Users
  • Set Account Expiration Date for Active Directory Users
  • Set "User cannot change password" on Active Directory Users
  • Block Inheritance and remove Inherited permissions
  • Block Inheritance and copy Inherited permissions
  • Document if User's Account has Dial-In permission
  • Document Access Control List (ACL) details for all objects in the selected container
  • Expire Active Directory user's password (requires users to change password at next logon)

Learn more about DSRAZOR for Windows Management. Request a personalized demo of DSRAZOR for Windows!