I firstly thought of dsquery but alas it looks like dsquery won't do thus I then thought of using asdiedit to query the domain and bingo, after a bit of searching about I found the right query.
(&(objectCategory=person)(objectClass=user)(lockoutTime>=1))Step by step then:
- Run adsiedit.msc (alternatively, run the console and add the asdiedit tab)
- Right Click on domain and select new | query
- Give the query a name, select your search root and paste the query itself
- Expand the domain tree and you will see your search
- Now you can unlock the locked out accounts.
No comments:
Post a Comment