Netwrix Auditor Inactive User Tracker standalone tool discovers inactive user and computer accounts. It performs the following tasks:
- Checks the managed domain or specific organizational units by inquiring all domain controllers, and sends reports to managers and system administrators listing all accounts that have been inactive for the specified number of days.
- Automatically deactivates inactive accounts by settings a random password, disabling, deleting or moving them to a specified organizational unit.
Review the following for additional information:
- Navigate to Start → Netwrix Auditor → Netwrix Auditor Inactive Users Tracker.
On the main page, you will be prompted to select a monitoring plan. Click Add to add a new monitoring plan.
Configure basic parameters as follows:
inactive user tracking
Select the checkbox to discover
inactive usersin your Active Directory domain.
Specify domain name in the FQDN format.
Send report to administrators
Enable this option and specify one or several email addresses for administrators to receive daily reports with a list of users whose accounts/passwords are going to expire in the specified number of days. Use semicolon to separate several addresses.
Navigate to the General tab and complete the following fields:
Specify account which will be used to collect data:
- User name
Enter the account which will be used for data collection.
For a full list of the rights and permissions this account, and instructions on how to configure them, refer to Configure Data Collecting Account.
Consider user inactive after
Specify account inactivity period, after which a user is considered to be inactive.
Customize the report template Click Edit to edit the notification template, for example, modify the text of the message. You can use HTML tags when editing a template.
Attach report as a CSV files
Select this option to receive reports attached to emails as CSV files.
Navigate to the Actions tab and complete the following fields:
Notify manager after
Specify account inactivity period, after which the account owner's manager must be notified.
Set random password after
Specify account inactivity period, after which a random password will be set for this account.
Disable accounts after
Specify account inactivity period, after which the account will be disabled.
Move to a specific OU after
- Specify account inactivity period, after which the account will be moved to a specified organizational unit.
- OU name—Specify OU name or select an AD container using button.
Delete accounts after
Specify account inactivity period, after which the account will be removed.
Delete account with all its subnodes
Select this checkbox to delete an account that is a container for objects.
Notify managers only once
If this checkbox is selected, managers receive one notification on account inactivity and one on every action on accounts.
Managers will receive a notification in the day when the account inactivity time will be the same as specified in the inactivity period settings.
By default, managers receive notifications every day after the time interval of inactivity specified in the Notify managers after entry field.
Navigate to the Advanced tab and complete the following fields:
Filter by account name
Specify one or several user account names (e.g., *John*). Use semicolon to separate several names. Only user accounts that contain selected name will be notified and included in the administrators and managers reports.
Filter by organizational unit
To audit inactive users that belong to certain organizational units within your Active Directory domain, select this option and click Select OUs. In the dialog that opens, specify the OUs that you want to audit. Only users belonging to these OUs will be notified and included in the administrators and managers reports.
Process user accounts
Select this checkbox to audit user accounts.
Process computer accounts
Select this checkbox to audit computer accounts.
Navigate to the Notifications tab and complete the following fields:
Enter your SMTP server address. It can be your company's Exchange server or any public mail server (e.g., Gmail, Yahoo).
Specify your SMTP server port number.
Enter the address that will appear in the From field.
NOTE: It is recommended to click Verify. The system will send a test message to the specified email address and inform you if any problems are detected.
Select this checkbox if your mail server requires the SMTP authentication.
Enter a user name for the SMTP authentication.
Enter a password for the SMTP authentication.
Use Secure Sockets Layer encrypted connection (SSL)
Select this checkbox if your SMTP server requires SSL to be enabled.
Use implicit SSL
Select this checkbox if the implicit SSL mode is used, which means that an SSL connection is established before any meaningful data is sent.
- If you want to save your current configuration, click Save.
- Click Generate next to Generate report on inactive users to view report immediately.