Specials

Special use cases

AD user account password reset

Resetting AD user account password is common task for AD administrators. With PowerShell and LDAP provider you can do it in a few lines of code. Below is example of how to reset user password and set "User must change password at next logon" flag on the account.

$Ldap = Get-LdapConnection
Register-LdapAttributeTransform -Name unicodePwd
Register-LdapAttributeTransform -Name fileTime -AttributeName pwdLastSet
#gets RootDSE object
$Dse = $Ldap | Get-RootDSE
#find user account
$User = Find-LdapObject -LdapConnection $Ldap `
  -SearchFilter:"(&(cn=jsmith)(objectClass=user)(objectCategory=organizationalPerson))" `
  -SearchBase:"ou=Users,$($Dse.defaultNamingContext)" `
  -PropertiesToLoad 'pwdLastSet', 'unicodePwd'
#reset password
$user.unicodePwd = "NewP@ssw0rd"
# set "User must change password at next logon" flag
$user.pwdLastSet = 0
#commit changes to directory
$user | Edit-LdapObject -LdapConnection $Ldap -IncludedProps 'unicodePwd', 'pwdLastSet'

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Specials

Special use cases

AD user account password reset

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Clone this wiki locally