Before anyone pastes me a solution based on last logon please take a moment to tell me if there is another solution. Last Logon is useless for a system that remains connected for extended periods without access. As long as the host is connected and receiving patches I could care less if its inactive for a year. I am trying to generate an AD Computer Object Aging report but I have found no other criteria I can use to validate if an AD object is offline for an extended period (which is a concern as patching would not occur). I assumed there must be an AD Object characteristic that captured the date an object was seen by AD but then I suppose that would be a continually changing value if it was connected.
Since I cannot rely on LastLogon as a valid aging source are there are any other options? For now I have a flawed aging reporting solution. I am making due but it seems hard to believe that there is not some daily value that is in a date format that I can query reflecting evidence that the host is online despite no local or remote logins to the host. Any insight is appreciated. Thank you.
