I'm looking for a script that I can apply to a Top-level OU and it's many sub OU's and users.
I need to a script that will force all of our users to change their password the next time they logon.
I don't know if there is a way but I want to make sure all user's are not prompted again to reset their password until their alloted time configured in our policy is up. For example, I am unsure if AD remembers how many days their had before they needed to change their password when the "Password never expires" option was ticked for their account. Just want it to be a clean slate for everyone.