Re: Expired passwords, etc

I'm not sure I follow your example of incorrect data, but one idea for a fast way to determine this information would be to right-click on the All Users folder and choose Query Active Directory->Users(Detailed - General). Then find the Pwd Last Set column and sort on it.

Re: Expired passwords, etc

thank you for the quick response. However, I ran the fresh query like you suggested but Hyena still returns the following:
- Pwd last set 04/26/2011

when I double-click to view user properties on same user:
- Security tab 'When Changed' returns 10/18/2011
- information window shows:
password expired
Last logon 10/26/2010
Pwd Change 202 days, 4 hours ago.

Re: Expired passwords, etc

The date shown in Pwd Last Set is coming from Active Directory.

When Changed is updated in Windows for various reasons other than just password change, so it's possible that something else was done to the account since the last password change.

Password Expired would seem to be correct if your domain policy is anything shorter than 7 months.

The only one that could be incorrect is the Last Logon information. The reason is that field is stored locally on each domain controller, and will be different depending on which controller is answering the request from Hyena. When reporting Last Logon for a single user you can right-click on that account and choose View Logon Information and then click the Check All Domain Controllers button. To report that for multiple users you can user Exporter Pro which has an option to check all domain controllers.