Active Directory: Password Expiration
Today's topic: Active Directory and Password Expiration! Not being able to login due to an expired password is a very common scenario for Active Directory user administration. If the password for a user is not set to never expire, then a group policy will most definitely make it expire after a period of time since the last change. Our goal for today? We are going to create a report that will contain the setting for the expiration of the password, the time it was last set and the time since the change. To get that information we are going to use Powershell and the ActiveDirectory module. All it takes is a singe Get-ADUser command to get the information from Active Directory piped to a Select-Object command in order to form the output: Get-ADUser -Filter * -Properties passwordlastset, ` passwordneverexpires | Select-Object Name, ` SamAccountName, ` PasswordNeverExpires, ` PasswordL