Baggio1001
Reputation: 11
Powershell: Password Must Change Next Logon when Password Expires in 1 day
Could someone help me with the following: I need a PowerShell script that searches a specific Organization Unit with a lot of users and sets: Password must change @ next logon if the password expires within 1 day.
I already have the following script:
$maxPwdAge=(Get-ADDefaultDomainPasswordPolicy).MaxPasswordAge.Days
$1day=(get-date).AddDays(1-$maxPwdAge).ToShortDateString()
Get-ADUser -filter {Enabled -eq $True -and PasswordNeverExpires -eq $False -and PasswordLastSet -gt 0} –Properties * | where {($_.PasswordLastSet).ToShortDateString() -eq $1day} | select *
Upvotes: 1
Views: 1514
Answers (1)
Vesper
Reputation: 18747
You should instead compare DateTime objects directly, you plain don't need ToShortDateString() conversion to compare dates in Powershell. Also last select * is superfluous and only spoils the return type of an object.
$1day=(get-date).AddDays(1-$maxPwdAge)
Get-ADUser -filter {Enabled -eq $True -and PasswordNeverExpires -eq $False -and PasswordLastSet -gt 0} –Properties * |
where {$_.PasswordLastSet -ge $1day}
Should do.
Upvotes: 1
Related Questions
- PowerShell - User Must Change Password at Next Logon
- Powershell Creating Password Expiration Report
- Create user with "password never expires" in PowerShell
- Force the password expiration date for a LOCAL user account
- Active Directory password expiration in powershell
- Powershell - Active Directory - filter PasswordLastSet by today
- powershell not enabling "change password at next logon"
- account expiration/password expiration in active directory
- Days until password expires
- New password on first log in with powershell