Inactive accounts (Windows)

Module: Login Parameters

Supported Platforms: Windows 2000, Windows 2003, Windows 2008, Windows Vista, Windows XP

This check reports accounts that have never logged on to the system and accounts that have not logged on for the specified number of days. Use the name list to include or exclude specified user accounts from the check.

The following table lists the error message for the check.

Table: Error message for Inactive accounts

Message String ID and Category	Platform and Message Numeric ID	Message Title and Description	Additional Information
String ID: ESM_W2KLASTLOG Category: Policy Compliance	Windows 2000 (105236) Windows 2003 (205236) Windows 2008 (248236) Windows Vista (228236) Windows XP (200236)	Title: Inactive account Description:The user has not logged onto this account for the number of days specified by your policy. An inactive account can be an easy target for intruders trying to break into your system. Remove or disable the inactive account.	Severity: yellow-1 Correctable: true Snapshot Updatable: false Template Updatable: false Information Field Format: [%s]

Message String ID and Category

Platform and Message Numeric ID

Message Title and Description

Additional Information

String ID: ESM_W2KLASTLOG

Category: Policy Compliance

Windows 2000 (105236)
Windows 2003 (205236)
Windows 2008 (248236)
Windows Vista (228236)
Windows XP (200236)

Title: Inactive account

Description:The user has not logged onto this account for the number of days specified by your policy. An inactive account can be an easy target for intruders trying to break into your system. Remove or disable the inactive account.

Severity: yellow-1

Correctable: true

Snapshot Updatable: false

Template Updatable: false

Information Field Format: [%s]