Setting AD user attributes programatically

This is exactly what you want.... But previous is good too... But this example is exactly the code that you was looking for



Option Explicit
Dim objOU, objUser, objRootDSE, objShell
Dim strContainer, strDNSDomain, strPassword
Dim intPwdValue

' Bind to Active Directory Domain
Set objRootDSE = GetObject("LDAP://RootDSE")
strDNSDomain = objRootDSE.Get("DefaultNamingContext")

' -------------------------------------------------------------'
' Important change OU= to reflect your domain
' -------------------------------------------------------------'
strContainer = "OU=Accounts, "
strPassword = "P@ssw0rd"
strContainer = strContainer & strDNSDomain

' Here we force a change of password at next logon
intPwdValue = 0

' Loop through OU=, setting passwords for all users
set objOU =GetObject("LDAP://" & strContainer )
For each objUser in objOU
If objUser.class="user" then
objUser.SetPassword strPassword
objUser.Put "PwdLastSet", intPwdValue
objUser.SetInfo
End If
Next
' Optional section to launch Active Directory Uses and Computers
Set objShell=CreateObject("WScript.Shell")
objShell.Run "%systemroot%\system32\dsa.msc"

WScript.Quit

' End of Sample PwdLastSet Advanced VBScript

The first example does what I want almost.......

It does need to remove the flag for " Password never expires" at the same time

Also I need the option to import a list of names rather than just target a sinlge OU.


If you can manage that you have the points.

You mean you want to set here "OU=Accounts" with a list of OUs instead of Accounts?

All done with that anyway. Thanks for the Script.

You are welcome.