How to View Full Details of All User Accounts in Windows 10
This tutorial will show you how to quickly view full details about all user accounts on your Windows 10 PC.
The full details of user accounts would include: AccountType, Description, Disabled, Domain, FullName, InstallDate, Lockout, LocalAccount, Name, PasswordChangeable, PasswordExpires, PasswordRequired, SID, SIDType, and Status.
1. Open a command prompt.
2. In the command prompt, copy and paste the command below you want to use, and press Enter.
(To see results in command prompt)
wmic useraccount list full
(To save results to a "UserAccountsDetails.txt" file on your desktop)
wmic useraccount list full >"%userprofile%\Desktop\UserAccountDetails.txt"
3. You will now see all user accounts on the PC listed with detailed information about each one. (see screenshots and table below)
||A flag that describes the characteristics of the user account.
- 256 = (UF_TEMP_DUPLICATE_ACCOUNT) Local user account for users who have a primary account in another domain. This account provides user access to this domain only—not to any domain that trusts this domain.
- 512 = (UF_NORMAL_ACCOUNT) Default account type that represents a typical user.
- 2048 = (UF_INTERDOMAIN_TRUST_ACCOUNT) Account for a system domain that trusts other domains.
- 4096 = (UF_WORKSTATION_TRUST_ACCOUNT) Computer account for a computer system running Windows that is a member of this domain.
- 8192 = (UF_SERVER_TRUST_ACCOUNT) Account for a system backup domain controller that is a member of this domain.
||Description of the account if available.
||True or False if the user account is currently disabled.
||Name of the Windows domain (ex: computer name) the user account belongs.
||Full name of the local user account.
||Date the object is installed if available. This property does not need a value to indicate that the object is installed.
||True or False if the user account is defined on the local computer.
||True or False if the user account is currently locked out of Windows.
||Name of the user account. This would be the same name as the "C:\Users\(user-name)" profile folder of the user account.
||True or False if the password of the user account can be changed.
||True or False if the password of the user account expires.
||True or False if a password is required for the user account.
||Security identifier (SID) for this account. A SID is a string value of variable length that is used to identify a trustee. Each account has a unique SID that an authority, such as a Windows domain, issues. The SID is stored in the security database. When a user logs on, the system retrieves the user SID from the database, places the SID in the user access token, and then uses the SID in the user access token to identify the user in all subsequent interactions with Windows security. Each SID is a unique identifier for a user or group, and a different user or group cannot have the same SID.
||Enumerated value that specifies the type of SID.
- 1 = User
- 2 = Group
- 3 = Domain
- 4 = Alias
- 5 = Well Known group
- 6 = Deleted account
- 7 = Invalid
- 8 = Unknown
- 9 = Computer
||Current status of an object. Various operational and nonoperational statuses can be defined.
Operational statuses include: "OK", "Degraded", and "Pred Fail", which is an element such as a SMART-enabled hard disk drive that may be functioning properly, but predicts a failure in the near future.
Nonoperational statuses include: "Error", "Starting", "Stopping", and "Service", which can apply during mirror resilvering of a disk, reloading a user permissions list, or other administrative work.
The values are:
- Pred Fail
- No Contact
- Lost Comm