Hi,
I am looking to clean up our Active Directory environment with ADManager Plus.  Cleaning up the computers will be pretty straight forward but the users will be a little more difficult.  I ran the inactive users report against all domain controllers and sorted it by Last Logon Time.  This is great if users are logging on to a machine that is part of the domain but we currently have a lot of users that work from home and VPN into our network using their domain credentials.  I checked the Domain Controller Security logs and I see where the users are authenticating through Active Directory but when I compare the time of authentication to the users last logon time it is incorrect.  Does anyone know of an LDAP attribute or anything else I may be able to use to get an accurate last logon report?  I don't want to disable\delete a user (like a transcriptionist) that works from home because of this.  Thanks in advance.

Jon