Inactive accounts with unchanged passwords (Windows)

Module: Login Parameters

Supported Platforms: Windows 2000, Windows 2003, Windows 2008, Windows Vista, Windows XP

This check reports accounts that are both inactive and have not had a password change within the specified number of days. Use the "Login/Password:" field to specify the allowed number of inactive days followed by a slash and the allowed number of days since a password change. Use the name list to include or exclude specified user accounts from the check.

The following table lists the error message for the check.

Table: Error message for Inactive accounts with unchanged passwords

Message String ID and Category

Platform and Message Numeric ID

Message Title and Description

Additional Information

String ID: ESM_LASTLOG_PSWDCHANGE

Category: Policy Compliance

  • Windows 2000 (105242)

  • Windows 2003 (205242)

  • Windows 2008 (248242)

  • Windows Vista (228242)

  • Windows XP (200242)

Title: Inactive accounts with unchanged password

Description:The user account is inactive and the password has not been changed within the specified number of days.

Severity: yellow-1

Correctable: true

Snapshot Updatable: false

Template Updatable: false

Information Field Format: [%s]

[an error occurred while processing this directive]