Solved

Force everyone to change their password

Posted on 2006-10-30
15
776 Views
Last Modified: 2011-09-20
How can I immeidately force everyone to change their password in my domain? Without going to everyone's individual account in active directory...
0
Comment
Question by:darovitz
  • 8
  • 7
15 Comments
 
LVL 48

Accepted Solution

by:
Jay_Jay70 earned 500 total points
ID: 17838931
you want everyone....

dsquery user "DC=Domain, DC=Local" | dsmod user -mustchpwd yes

next time they log off they will have to change

you want to do it straight off then use psshutdown to force them to log off......
0
 

Author Comment

by:darovitz
ID: 17839414
Do I have to run those commands from run from a serve, does it matter which oner?

Where do I run psshutdown?
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17839424
you should run it on your DC but you can do it from an xp client if needed, psshutdown should be run from the server but you need to download from sysinternals
0
Flexible connectivity for any environment

The KE6900 series can extend and deploy computers with high definition displays across multiple stations in a variety of applications that suit any environment. Expand computer use to stations across multiple rooms with dynamic access.

 

Author Comment

by:darovitz
ID: 17839459
Will it shut down my servers also... because I don't want that...
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17839476
you specify who you want it to shutdown/logoff
0
 

Author Comment

by:darovitz
ID: 17839770
This is what I got


Microsoft Windows [Version 5.2.3790]
(C) Copyright 1985-2003 Microsoft Corp.

C:\Documents and Settings\Melanie Putnam>dsquery user "DC=Domain, DC=Local" | ds
mod user -mustchpwd yes
dsquery failed:A referral was returned from the server.
type dsquery /? for help.dsmod failed:`Target object for this command' is missin
g.
type dsmod /? for help.
C:\Documents and Settings\Melanie Putnam>



0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17839897
you need to change the domain and local entries to your domain name :)
0
 

Author Comment

by:darovitz
ID: 17839919
dsquery user | ds mod user -mustchpwd yes

I did this but can't tell if it worked
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17839935
check a user account and see if the tickbox for change password on next log on is ticked
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17839938
you need to use the full command though
0
 

Author Comment

by:darovitz
ID: 17839952
It says dsmod suceeded but says BUT has a default limit of 100 results to display as follows:

Dsquery has reached the default limit of 100 results to display; use the -limit
option to display more results.

Does this mean all the accounts have been reset or just the 100 I can view?
0
 

Author Comment

by:darovitz
ID: 17839968
It worked.  Thanks.. saves me the time of going through every account.
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17839972
its done everything just displaying 100 :)
0
 

Author Comment

by:darovitz
ID: 17839980
No, actually your right.  I checked a few and it looked like it did, but now I see it is sporadic.

How do I get it to do all accounts?
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17839995
use the option               -limit 0
0

Featured Post

Manage your data center from practically anywhere

The KN8164V features HD resolution of 1920 x 1200, FIPS 140-2 with level 1 security standards and virtual media transmissions at twice the speed. Built for reliability, the KN series provides local console and remote over IP access, ensuring 24/7 availability to all servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

We recently endured a series of broadcast storms that caused our ISP to shut us down for brief periods of time. After going through a multitude of tests, we determined that the issue was related to Intel NIC drivers on some new HP desktop computers …
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

821 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question