IT Support Providers can use Quest (CU's Active Directory tool) to query CU's LDAP for email forwarding and date/ time someone's password was change (by them, or scrambled by IT Security).
Email forwarding
Password change
- In Quest, look up an AD at the TOP (cornell.edu) level.
- Right-click NetID and select Advanced Properties
- At bottom, left, select both "Show all possible attributes" AND "Include attributes with empty values".
- Look for property "pwdLastSet"
- Date value is given in Integer8 format (such as 131098052949416065), so must use a converter. Such as:
- https://www.epochconverter.com/ldap
In Windows (command line) use: w32tm.exe /ntte
Example: w32tm.exe /ntte 131098052949416065