Solved

AD Password s

Posted on 2014-02-26
8
154 Views
Last Modified: 2014-03-04
Hello
I want to force 170 users to "Change there password at next login" in active directory.
What is the easiest and quickest way to do this without setting each account one at a time ?

DNRRP
0
Comment
Question by:DNRRP
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
8 Comments
 
LVL 19

Expert Comment

by:helpfinder
ID: 39891107
You can do it without script. And it will take just a minute (if you do not have a lot of OUs with users).
Just do to AD users and computers, select multiple users and right click the properties. There should be an option (tick box) to force user to change pass on next logon
0
 
LVL 3

Expert Comment

by:Krishna Patil
ID: 39891119
With script, you can achieve it.

Set objUser = GetObject("LDAP://cn=username,ou=ouname,dc=MyDomain,dc=com")
objUser.pwdLastSet = 0
objUser.SetInfo

But, you need to get OU details correctly for LDAp search
0
 

Author Comment

by:DNRRP
ID: 39891133
Helpfinder
Where is the option to select multiple users from ?

DNRRP
0
Webinar: Aligning, Automating, Winning

Join Dan Russo, Senior Manager of Operations Intelligence, for an in-depth discussion on how Dealertrack, leading provider of integrated digital solutions for the automotive industry, transformed their DevOps processes to increase collaboration and move with greater velocity.

 
LVL 19

Expert Comment

by:helpfinder
ID: 39891144
just go to appropriate OU and press ctrl+a to select all users (objects) in that OU, or choose by holding ctrl and left clicking on users you want to select or 3th option is to click on a first user in an OU, hold shift and right click on the last user
0
 
LVL 3

Expert Comment

by:Krishna Patil
ID: 39891149
If uses exists in same OU, then you can just select multiple user by mouse or by keyboard, and check property on right click, and select option for 'changing password on next logon'.
0
 
LVL 9

Expert Comment

by:VirastaR
ID: 39891698
Hi Check this,

Similar kind of issue resolved in Technet Forum.

How to force all users to change their password at next logon

Hope that helps :)
0
 
LVL 37

Accepted Solution

by:
Mahesh earned 360 total points
ID: 39892813
Just run one saved query in active directory users and computers

It will give you all users in entire domain
http://anandthearchitect.com/2008/07/02/list-all-active-users-in-a-domain/

Just select all users by selecting ctrl+A and then remove unwanted users by holding down Ctrl key and deselecting one by one

right click and select properties and go to account tab

There you will have to select extreme left checkbox corresponds to "User must change password at next logon" and then inside checkbox will be enabled. U need to select that checkbox as well

That's all

Now each user is forced to change password at next logon
0
 
LVL 5

Expert Comment

by:Pankaj_401
ID: 39893990
dsquery user should work fine for you. Try this.
0

Featured Post

Salesforce Has Never Been Easier

Improve and reinforce salesforce training & adoption using WalkMe's digital adoption platform. Start saving on costly employee training by creating fast intuitive Walk-Thrus for Salesforce. Claim your Free Account Now

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

It’s been over a month into 2017, and there is already a sophisticated Gmail phishing email making it rounds. New techniques and tactics, have given hackers a way to authentically impersonate your contacts.How it Works The attack works by targeti…
A company’s centralized system that manages user data, security, and distributed resources is often a focus of criminal attention. Active Directory (AD) is no exception. In truth, it’s even more likely to be targeted due to the number of companies …
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

724 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question