Active Directory Issues

Active Directory Attributes: Account Name History

This attribute denotes the amount of time the user account has been active. It is a write-only attribute and can be only updated by the domain administrator.

Ldap-Display-Name	accountNameHistory
Data type	Object
Single value or Multi value	Multi value
Attribute-Id	1.2.840.113556.1.4.1307
CN	Account-Name-History
Applies to	Windows Server 2000 and higher
For more information on the attribute	Learn more

ManageEngine ADSelfService Plus is an integrated self-service password management and single sign-on (SSO) solution. It offers comprehensive reports to monitor Active Directory user account activity including:

• Blocked Users Report: Generates the list of users who have been blocked from accessing ADSelfService Plus. The report provides information like the time of blocking, the time the user will be unblocked, and the domain name.
• Locked Out User Reports: It provides information on domain users who have been locked out from their account due to entering incorrect passwords.
• Password Expired Users Report: It displays the list of users whose passwords are expired in accordance to the enforced domain policy.

Other highlights:

• Enterprise SSO: Allow users to access multiple enterprise applications like Microsoft 365, Salesforce, and G Suite, with one set of credentials.
• Endpoint multi-factor authentication: Secure Windows, macOS, Linux machine logons with an additional layer of authentication leveraging YubiKey or biometrics.
• Password expiry notifier: Help remote and VPN users be proactive about their soon-to-expire Windows Active Directory passwords by sending them multiple SMS, email, and push alerts.