Docs > Cleanup

Find Users With no Logon History in Active Directory

In this guide, you will learn how to find all user accounts in Active Directory that have never logged on.

The AD Cleanup tool will check the user’s lastLogonTimestamp attribute to determine its logon history. If the value is not set it means the account has never been logged into.

Follow the steps below to find all domain users that have never logged on.

Step 1. Click on Filters then select Users Without Logon History.

Note: If you do not want to include computers in the report uncheck “Show Computers”.

Step 2. Click the run button to view the report.

By default, the report will show enabled and disabled user accounts. If you only want to view the enabled user accounts hover your mouse over the status column and select the filter icon then select “Enabled”.

Now you will have a report of all enabled user accounts that have never logged on.

The built-in AD Reporting Tool also includes several logon status reports.

These reports can be exported or set to run on an automated schedule.

Next Steps

In this guide, you learned to find users with no logon history.

In the next tutorial, you will learn how to find inactive computer accounts.

Find Inactive Computers

The AD Pro Toolkit simplifies Active Directory management and saves hours of manual work. Download Free Trial.