Inactive accounts (Windows)

Module: Login Parameters

Supported Platforms: Windows 2000, Windows 2003, Windows 2008, Windows Vista, Windows XP

This check reports accounts that have never logged on to the system and accounts that have not logged on for the specified number of days. Use the name list to include or exclude specified user accounts from the check.

The following table lists the error message for the check.

Table: Error message for Inactive accounts

Message String ID and Category

Platform and Message Numeric ID

Message Title and Description

Additional Information


Category: Policy Compliance

  • Windows 2000 (105236)

  • Windows 2003 (205236)

  • Windows 2008 (248236)

  • Windows Vista (228236)

  • Windows XP (200236)

Title: Inactive account

Description:The user has not logged onto this account for the number of days specified by your policy. An inactive account can be an easy target for intruders trying to break into your system. Remove or disable the inactive account.

Severity: yellow-1

Correctable: true

Snapshot Updatable: false

Template Updatable: false

Information Field Format: [%s]