K1000 - Create Smart Group for devices with local account password older than 90 days
Would like use a smart group to audit my Win10 device where a local admin account pw is greater than 90 days.
I was thinking of creating a CIR using the: net user <username> | fiind /I "password last set" command wiith output:
Password last set 2/6/2019 2:59:22 PM
but not sure how I can leverage a smart group to specifically read the actual date.
I was thinking I can maybe output part of it to a file on the device and somehow read it that way, or is there a registry entry where the date is stored?
Community Chosen Answer
That will bring in a text string not a date string so it is not of much use for what you want. I would look at powershell for extracting that information.
Do all your local administrators accounts have the same password that you control?