When a Mac joins our Active Directory, 31 computer attributes are populated but does anyone know which attributes get updated after a computer binds to Active Directory? For example, the operatingSystem and operatingSystemVersion attributes populate when the computer joins but never updates as the OS version changes throughout its life time. I'm more interested in knowing whether any of the following attributes ever get updated which helps indicate whether a computer is still active in AD?
lastLogon
lastLogonTimeStamp
pwdLastSet
Some suggest that older Mac OS versions do not update any attribute while others claim the newer OS versions update certain attributes. If that is the case, does anyone know the OS version cutoff and which attributes?
