Notify of change password expired

Discussion in 'Active Directory' started by Emyeu, Oct 11, 2005.

  1. Emyeu

    Emyeu Guest

    i have set all user accounts password expire after 90 days.
    anyways to configure such that (maybe 10 days before the passowrd expire) AD
    will send an email notification to the user to remind them to change
    Emyeu, Oct 11, 2005
    1. Advertisements

  2. There is no built-in way to do this. You could write a script that would
    query Active Directory for any users whose passwords were going to expire in
    10 days and send them an e-mail that way. There is a password expires
    attribute (I'm not exactly sure the attribute name right now), but you can
    use that to determine how soon the password expires.

    Jim McBee
    Jim McBee [MVP Exchange], Oct 11, 2005
    1. Advertisements

  3. Emyeu

    Morley Tech Guest

    You don't have to bother doing anything as when the 10 period is entered the
    next time you logon it asks if you want to change your password and that it
    must be changed with in 10 days, you can select no to change it later.
    Morley Tech, Oct 11, 2005
  4. You'll need to perform a calculation against pwdLastSet - take today's date
    and take away the pwdLastSet date; then compare the resultant number against
    the domain password policy. You can then ascertain whether or not to mail
    the user.

    Note. pwdLastSet is a long integer, so your going to need to do some
    conversions before you can start doing date arithmetic.

    Otherwise, as mentioned by Denver, you can use the GPO option:

    \Computer Configuration\ Windows Settings\ Security Settings\ Local
    Policies\ Security Options\
    Interactive Logon: Prompt user to change password before expiration

    This is a client setting, so can be limited to a sub set of domain computers
    if you like.
    Paul Williams [MVP], Oct 11, 2005
  5. Emyeu

    Emyeu Guest

    i am awared that user will be prompted to change password on next time logon
    when password going to expire.

    i would like to have addition feature, send notification via email, to
    remind user to change their password before it expired.
    Emyeu, Oct 11, 2005
  6. Then you'll have to script it. See Jim and my post above for more
    information on how to do this.
    Paul Williams [MVP], Oct 11, 2005
  7. See tip 8451 ยป Email a password expiration notice to all users whose password will expire in n days.
    in the 'Tips & Tricks' at

    Jerold Schulman
    Windows Server MVP
    JSI, Inc.
    Jerold Schulman, Oct 11, 2005
  8. Joe Richards [MVP], Oct 12, 2005
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.