Solved

Force everyone to change their password

Posted on 2006-10-30
15
768 Views
Last Modified: 2011-09-20
How can I immeidately force everyone to change their password in my domain? Without going to everyone's individual account in active directory...
0
Comment
Question by:darovitz
  • 8
  • 7
15 Comments
 
LVL 48

Accepted Solution

by:
Jay_Jay70 earned 500 total points
ID: 17838931
you want everyone....

dsquery user "DC=Domain, DC=Local" | dsmod user -mustchpwd yes

next time they log off they will have to change

you want to do it straight off then use psshutdown to force them to log off......
0
 

Author Comment

by:darovitz
ID: 17839414
Do I have to run those commands from run from a serve, does it matter which oner?

Where do I run psshutdown?
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17839424
you should run it on your DC but you can do it from an xp client if needed, psshutdown should be run from the server but you need to download from sysinternals
0
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

 

Author Comment

by:darovitz
ID: 17839459
Will it shut down my servers also... because I don't want that...
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17839476
you specify who you want it to shutdown/logoff
0
 

Author Comment

by:darovitz
ID: 17839770
This is what I got


Microsoft Windows [Version 5.2.3790]
(C) Copyright 1985-2003 Microsoft Corp.

C:\Documents and Settings\Melanie Putnam>dsquery user "DC=Domain, DC=Local" | ds
mod user -mustchpwd yes
dsquery failed:A referral was returned from the server.
type dsquery /? for help.dsmod failed:`Target object for this command' is missin
g.
type dsmod /? for help.
C:\Documents and Settings\Melanie Putnam>



0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17839897
you need to change the domain and local entries to your domain name :)
0
 

Author Comment

by:darovitz
ID: 17839919
dsquery user | ds mod user -mustchpwd yes

I did this but can't tell if it worked
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17839935
check a user account and see if the tickbox for change password on next log on is ticked
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17839938
you need to use the full command though
0
 

Author Comment

by:darovitz
ID: 17839952
It says dsmod suceeded but says BUT has a default limit of 100 results to display as follows:

Dsquery has reached the default limit of 100 results to display; use the -limit
option to display more results.

Does this mean all the accounts have been reset or just the 100 I can view?
0
 

Author Comment

by:darovitz
ID: 17839968
It worked.  Thanks.. saves me the time of going through every account.
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17839972
its done everything just displaying 100 :)
0
 

Author Comment

by:darovitz
ID: 17839980
No, actually your right.  I checked a few and it looked like it did, but now I see it is sporadic.

How do I get it to do all accounts?
0
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17839995
use the option               -limit 0
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A brief overview to explain gateways, default gateways and static routes OR NO - you CANNOT have two default gateways on the same server, PC or other Windows-based network device. In simple terms a gateway is formed when a computer such as a serv…
FIPS stands for the Federal Information Processing Standardisation and FIPS 140-2 is a collection of standards that are generically associated with hardware and software cryptography. In most cases, people can refer to this as the method of encrypti…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…

785 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question