That's what I was afraid of. I don't have access to any Exchange commands, so I only have the AD account itself.
From: [email protected] [mailto:[email protected]] On Behalf Of Michael B. Smith Sent: Monday, September 21, 2015 12:29 PM To: [email protected] Subject: [NTSysADM] RE: Question about OWA authentication So you are looking at the AD locally in a hybrid O365 deployment? I can't think of any way to do what you want unless Get-Mailbox gives you the data. From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Heaton, Joseph@Wildlife Sent: Monday, September 21, 2015 12:22 PM To: '[email protected]' Subject: [NTSysADM] RE: Question about OWA authentication Unfortunately, I don't have access to that. We're on a customized version of Office 365, that I have zero admin/management access to. From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Kennedy, Jim Sent: Monday, September 21, 2015 12:16 PM To: '[email protected]' Subject: [NTSysADM] RE: Question about OWA authentication Event log on the OWA server, might need to turn up logging if you don't have it already. Or grep the W3SVC1 folder. http://windowsitpro.com/windows/how-can-i-monitor-outlook-web-access-activity From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Heaton, Joseph@Wildlife Sent: Monday, September 21, 2015 3:13 PM To: '[email protected]' Subject: [NTSysADM] RE: Question about OWA authentication So, you're saying that logging into OWA will not update either of the Last Logon attributes? Makes sense with what I'm seeing. However, it makes it difficult to track if a user account is still valid. Any other methods of seeing if the user is valid, aside from reaching out to the supervisor? From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Michael B. Smith Sent: Monday, September 21, 2015 10:37 AM To: [email protected]<mailto:[email protected]> Subject: [NTSysADM] RE: Question about OWA authentication OWA or any web logon is not the same as an interactive logon. From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Heaton, Joseph@Wildlife Sent: Monday, September 21, 2015 7:58 AM To: NT System Admin Issues Discussion list Subject: [NTSysADM] Question about OWA authentication Our organization uses a customized Office 365 installation, due to working for the State of California. My question is how logging into OWA affects the Last Logon/Last Logon Timestamp attribute. I have users who are showing up on my Inactive Users report, and I want to make sure that I don't disable an account that really is being used. One particular user has a Last Logon Timestamp of 8/6/2014, but his account was just renewed for another year in August of this year. So, is it possible that this user only accesses OWA for e-mail, and never logs into a domain computer? I've been finding conflicting info on the internet. Thanks, Joe Heaton Information Technology Operations Branch Data and Technology Division CA Department of Fish and Wildlife 1700 9th Street, 3rd Floor Sacramento, CA 95811 Desk: (916) 323-1284 Every Californian should conserve water. Find out how at: [SaveOurWater_Logo]<http://saveourwater.com/> SaveOurWater.com<http://saveourwater.com/> * Drought.CA.gov<http://drought.ca.gov/>
