bndit
asked on
Bulk Reset AD passwords to unique passwords
Hello,
I've been searching EE & google for a script that would allow me to reset AD passwords to unique passwords and not something generic for all users. In other words, here's what I'm trying to accomplish:
Name DOB (password)
Joe Smith --> 09171965
Mary Sue --> 12251971
I've come across VBscripts that prompt the administrator for the user to have his/her password reset, and while this would work for one user, it wouldn't work for many users as I'm trying to automate the process. I will be creating a large number of users and here's my idea:
1. Use a script to create and enable the user accounts with a generic password (got this step)
2. Place all users created in step #1 into a specific OU (got this step)
3. Create a file (.csv,.txt, etc) with user names (or sAMaccount, DN, etc.) and passwords.
3. Run a script against the OU in step #2 and have the script read the file in step #3 so that it can reset the passwords accordingly.
Any guidance on how to accomplish the above will be much appreciated. Thanks.
I've been searching EE & google for a script that would allow me to reset AD passwords to unique passwords and not something generic for all users. In other words, here's what I'm trying to accomplish:
Name DOB (password)
Joe Smith --> 09171965
Mary Sue --> 12251971
I've come across VBscripts that prompt the administrator for the user to have his/her password reset, and while this would work for one user, it wouldn't work for many users as I'm trying to automate the process. I will be creating a large number of users and here's my idea:
1. Use a script to create and enable the user accounts with a generic password (got this step)
2. Place all users created in step #1 into a specific OU (got this step)
3. Create a file (.csv,.txt, etc) with user names (or sAMaccount, DN, etc.) and passwords.
3. Run a script against the OU in step #2 and have the script read the file in step #3 so that it can reset the passwords accordingly.
Any guidance on how to accomplish the above will be much appreciated. Thanks.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You mentioned that you know how to have a VBScript prompt the Admin to change the User password.
Do you need to set the passwords to something you know, or would it be OK to just prompt all the Users and force them to change their own passwords? This can be done with Group Policy (Computer Config-->Windows Settings-->Security Settings-->Account Policies-->Password Policy).
Do you need to set the passwords to something you know, or would it be OK to just prompt all the Users and force them to change their own passwords? This can be done with Group Policy (Computer Config-->Windows Settings-->Security Settings-->Account Policies-->Password Policy).
ASKER
I want to change the passwords to something known but unique to each user such as their employee #. I'm trying to stay away from turning the "change password at next logon" flag - this might be against best practice when creating a new user account, but it's necessary in my circumstances. The password policy applied at the domain level will take care of forcing them to reset the password at a later time.
hi
this is a good request i can use this too. if u want i can script for u a VBScript which will do all the 4 steps you have above but we woud need to agree on how r u going to supply the user details.
if you can put all in a txt all above steps can be done automaticaly.
Art
this is a good request i can use this too. if u want i can script for u a VBScript which will do all the 4 steps you have above but we woud need to agree on how r u going to supply the user details.
if you can put all in a txt all above steps can be done automaticaly.
Art
ASKER
Hi Art - thanks for offering to script this out. I'm providing you with a small text file that contains about five users...this should be enough to get the script working. Take a look at the txt file and let me know if it works. The only column that you won't find in it will be the password as I don't believe that can be imported into AD but rather you'll take care of it with the script. Let me know. Thanks again.
User-bulk-create2.txt
User-bulk-create2.txt
ASKER
thanks
ASKER
thanks,