0 votes

Is it possible to run a report to get users disabled in the last 24 hours?

by (110 points)

1 Answer

0 votes
by (294k points)

Hello,

You can create a custom report that will be generated by a PowerShell script accessing Adaxes logs and output only the users that were disabled during the specified period. For information on how to create reports, have a look at the following tutorial: https://www.adaxes.com/tutorials_ActiveDirectoryManagement_CreateReport.htm. Should you have any issues creating the report, please, provide us with all the possible details regarding the desired behavior and we will help you.

0

I have now craeted a SQL database for logging.

Can you pelase help me with query to show disabled users in last 24 hours?

0

Hello,

I have now craeted a SQL database for logging.

Do we understand correctly that you enabled logging to an external MS SQL database in Adaxes?

Can you pelase help me with query to show disabled users in last 24 hours?

Do you want to query the records from the external database using an SQL server database tool or you want to have a report in Adaxes that can be generated on demand or scheduled? If latter is the case, please, provide us with the following details:

Any additional details would be much appreciated.

0

Do we understand correctly that you enabled logging to an external MS SQL database in Adaxes? Yes, logs are now going to a SQL database on SQL2016

Do you want to query the records from the external database using an SQL server database tool or you want to have a report in Adaxes that can be generated on demand or scheduled? We would like Adaxes to generate the report and email on a daily basis

What version of Adaxes are you currently using? 2019.2 (Version 3.12.17423.0 (64 bit))

Should the report always return only users disabled during the last 24 hours or the user generating the report should have a possibility to choose the period? Last 24 hours only (Can this be a scheduled report)

+1

Hello, Thank you for the provided details. To create the report:

  1. Launch Adaxes Administration Console.
  2. In the Console Tree, right-click your service node.
  3. In the context menu, navigate to New and click Report. image.png
  4. Enter a report name and select the Script optio. image.png
  5. Click Next 4 times.
  6. Paste the below script into the corresponding field.
# Bind to Service Log
$serviceLogPath = $Context.GetWellKnownContainerPath("ServiceLog")
$serviceLog = $Context.BindToObject($serviceLogPath)

# Get log records
$generalLog = $serviceLog.GeneralLog
$generalLog.StartDateTime = (Get-Date).AddHours(-24)
$generalLog.EndDateTime = Get-Date

$log = $generalLog.Log
$records = $log.GetPage(0)

$guidsInBytes = New-Object "System.Collections.ArrayList"
foreach ($record in $records)
{
    if ($Context.Items.Aborted)
    {
        return
    }

    if (($record.TargetObjectType -ne "user") -or ($record.TargetObjectGuid -eq $NULL))
    {
        continue
    }

    if (($record.State -eq "OPERATION_STATE_FAILED_CAN_CONTINUE") -or
        ($record.State -eq "OPERATION_STATE_FAILED_NO_CONTINUE"))
    {
        continue
    }

    $operationTypes = $record.GetOperationTypes()
    if ($operationTypes -notcontains "disable account")
    {
        continue
    }

    $targetObjectGuid = ([Guid]$record.TargetObjectGuid).ToByteArray()
    $guidsInBytes.Add($targetObjectGuid)
}

$searcher = $Context.CreateGuidBasedSearcher($guidsInBytes)
$Context.Items.Add($searcher)
  1. Click Next and finish creating the report.
0

Thank you. This is exactly what we are looking for.

Im sure there are other companies that would use this as well.

Why not add it as a default report in a future update :)

Related questions

0 votes
1 answer

The report criteria would be as follows, Name/Last Logon Date of any user that was disabled in the last 30 days. Furthermore, if possible, how would I publish this to the user ... run a report and/or choose which dates to run the report, on his own? TIA

asked Nov 26 by Milan.Pathak (20 points)
0 votes
1 answer

Hi, we currenlty have a business rule to send an email everytime the Title, Manager, Department, accountExpires, EmployeeType or FirstName attributes are ... Unit: %BusinessUnit% End Date: %accountExpires% Effective Date of Change: %adm-CustomAttributeDate2%

asked Feb 14 by KevC (60 points)
0 votes
1 answer

We have four OUs in Active Directory (Pending Deletion, Disabled with Mail Delegates, Disabled with HR Extensions and Disabled_Temp_Leave) that users are moved to prior to their eventual ... past 7 days have been moved to one of 4 of these OUs. Thanks!

asked Jun 3, 2021 by RayBilyk (240 points)
0 votes
1 answer

Using this built in function: There is no option to change the domain on the user account, however this is not the domain we use for UPN. However after creating a user, you can change it but trying to avoid going back into the object.

asked Apr 14, 2023 by mightycabal (1.0k points)
0 votes
1 answer

Some of our users don't log on to AD ever therefore does not give us a true user picture?

asked Jun 4, 2021 by marcwoollard (40 points)
3,588 questions
3,277 answers
8,303 comments
548,090 users