Hi
As part of PCI DSS verification I have run a query in AD to find the accounts that are inactive for 90 days and have disabled them manually. However PCI scan is still failing with below message;
Verify inactive accounts For all accounts on the system verify that they havent been inactive beyond 90 days. You must have a process in place to identify and review inactive accounts that have not been used in 90 days and either remove or disable them.
My question is what is the best way to find the accounts inactive for 90 days and to disable them?
Thanks
Regards
- Edited by Y a h y a 9 hours 17 minutes ago