|
Posted by Steven L Umbach on September 29, 2005, 4:58 pm
If you were Registered and logged in, you could reply and use other advanced thread options
If you have a Window 2003 domain controller you can do that with Active
Directory Users and Computers. I believe you highlight all the user
accounts, select properties, and then select user must change password at
next logon. I am going by memory so it may be a little more complicated [not
much] than that but that should get you started in the general direction.
You can also use the AD command line tools for dsquery for user and dsmod
for users of which you can pipe the results from dsquery to dsmod. Use |
between two commands with space before and after to pipe. If you have a
Windows 2000 domain you still can use the AD command line tools if you
install adminpak for Windows 2003 [free download from MS] onto a Windows XP
Pro domain computer and logon as a domain administrator or use runas for
those tools.
You might want to rethink doing all the accounts in one day. Maybe do a
fourth or so the first day to see how it goes so as to not flood support
with calls. Be sure users are educated as to what the requirements are for
new passwords with specific examples. You might be surprised to find out how
hard users find this to be. --- Steve
http://www.ss64.com/nt/dsmod.html -- dsmod example.
> Is there a way to force all users in AD to reset their password at the
> next logon without having to do each account 1 by 1? We have implemented
> PassFilt Pro SPE and I would like for all user to change their passwords
> to meet the new complexity requirements on the go-live day. Any
> suggestions?
>
> Thx,
>
> Jon
>
| 
XML site map