1601/01/01 of lastLogonTimeStamp attribute

windows powershell active-directory ldap
10,131

There is a known bug with the "last logon timestamp" and Windows 2016 domain controllers.

LDAP simple bind are not updating the last logon timestamp like previous OS ( 2012, 2008 ). Be careful.

I spent 2 months with MS on this. A patch will be released eventually... but for now it's not fixed.

Share:
10,131
Ender
Author by

Ender

Updated on August 10, 2022

Comments

  • Ender
    Ender over 1 year

    I'm using lastLogonTimeStamp to track the users last logon time as the following code:

    $Domain = [System.DirectoryServices.ActiveDirectory.Domain]::GetCurrentDomain()
$ADSearch = New-Object System.DirectoryServices.DirectorySearcher
$ADSearch.SearchRoot ="LDAP://$Domain"
$ADSearch.SearchScope = "subtree"
$ADSearch.PageSize = 100
$ADSearch.Filter = "(objectClass=user)"

$properies = @("distinguishedName",
"sAMAccountName",
"mail",
"lastLogonTimeStamp")

foreach ($pro in $properies) {
    $ADSearch.PropertiesToLoad.add($pro)   
}

$userObjects = $ADSearch.FindAll()
foreach ($user  in $userObjects) {
    $logon = $user.Properties.Item("lastLogonTimeStamp")[0]
    $lastLogon = [datetime]::fromfiletime($logon)        
    $lastLogon= $lastLogon.ToString("yyyy/MM/dd")
    $lastLogon
}

    I've gotten so far:

    1601/01/01
1601/01/01
3/12/2012
1601/01/01
3/19/2015

    This is not the first time I'm bloody confused about the 1601/01/01 value. And I've read also the MS document about this value and for me it's nonsense, it does not describe much what is the purposes of it. Not only lastLogonTimeStamp has this output, many other attributes have return this as well. So my questions are:

    1. What is the purpose of this value?
    2. In this case, what should I return as a proper human readable output ? (This attribute is not valid for this user?)

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Using powershell I'd like to get a list of people who have admin privileges for a domain?
AD return 8009030C: LdapErr: DSID-0C09043E, comment: AcceptSecurityContext error, data 0, vece
How to get All attributes from an Active Directory user in C#
Use ldap3 to query all active directory groups a user belongs to
Binding to a different active directory ldap instance in Powershell
Find out my bind DN in a Windows network
How to get Linux users list from LDAP
How to Get user info from different domain
Query Active Directory UID attribute
LAPS PS module fails to import