Tom's Hardware > Forum > Windows 2000/NT > Windows 2000/NT General Discussion > Setting "User Must Change Password at next Logon" via scri..

Setting "User Must Change Password at next Logon" via scri..

Forum Windows 2000/NT : Windows 2000/NT General Discussion - Setting "User Must Change Password at next Logon" via scri..

Tom's Hardware: Over 1.4 million members in 6 different countries available to answer all your high-tech questions. Sign up now! Its free!
Ask the community Add a reply
Word :    Username :           
 
Anonymous   10-08-2004 at 09:35:26 PM

Archived from groups: microsoft.public.win2000.security (More info?)

 

I need to add a local NTFS user and force them to chenge their password when
they logon. All examples point to AD, but this is a local account.

How can I manipulate the "User Must Change Password at next Logon" bits via
DOS, VBS or WMI?

Thanks,

Tim

Add a reply
Sponsored Links
Register or log in to remove.
Anonymous   10-09-2004 at 04:04:54 AM
- 0 +

Archived from groups: microsoft.public.win2000.security (More info?)

 

Tim Nettleton wrote:

> I need to add a local NTFS user and force them to chenge their password when
> they logon. All examples point to AD, but this is a local account.
>
> How can I manipulate the "User Must Change Password at next Logon" bits via
> DOS, VBS or WMI?
Hi

Here is a VBScript solution that creates a local user account (with
"User Must Change Password at Next Logon" enabled) and adds it to a
local group.


'--------------------8<----------------------
' name of user to be created
sNewUser = "mini-strator"

' name of the group the user is to be added to
sGroupname = "Administrators"

' get computer name
Set oWshNet = CreateObject("WScript.Network" )
sComputerName = oWshNet.ComputerName

' connect to the Winnt provider
Set oComputer = GetObject("WinNT://" & sComputerName)

' create the user
Set oUser = oComputer.Create("user", sNewUser)

oUser.SetPassword "A1234_B1234"

On Error Resume Next
' save the user
oUser.Setinfo

' If user exists already or password restrictions
' are not fulfilled, we get an error
If Err.Number = 0 Then

' configure the user
On Error Goto 0


' Enable "User Must Change Password at Next Logon"
oUser.Put "PasswordExpired", 1

oUser.Fullname = "John Doe"
oUser.Description = "hi!"
oUser.Setinfo
End If
On Error Goto 0


' Add the user to the group
Set oGroup = GetObject("WinNT://" & sComputerName & "/" & sGroupname)

' Use error handling in case he is a member already
On Error Resume Next
oGroup.Add(oUser.ADsPath)
On Error Goto 0
'--------------------8<----------------------


More links:

Configuring a Local User Account So It Never Expires
http://www.microsoft.com/technet/c [...] ug115.mspx


WSH 5.6 documentation (local help file) can be downloaded from here
if you haven't got it already:
http://msdn.microsoft.com/downloads/list/webdev.asp



--
torgeir, Microsoft MVP Scripting and WMI, Porsgrunn Norway
Administration scripting examples and an ONLINE version of
the 1328 page Scripting Guide:
http://www.microsoft.com/technet/s [...] fault.mspx

Reply to Anonymous
Anonymous   10-08-2004 at 10:37:17 PM
- 0 +

Archived from groups: microsoft.public.win2000.security (More info?)

 

Ugh, I tried in vain to use the "NET USER" commands in DOS to make this
work. No luck.

I ended up using ADSI and AutoIT(www.hiddensoft.com) to glue it together.

Her is the code for PasswordExpire.aut that can be compiled into
PasswordExpire.exe:

MAIN:
IFEQUAL,,%1%,GOTO,ARGS
FILEDELETE,%A_SCRIPTDIR%PasswordExpire.vbs
FILEAPPEND,Set usr = GetObject("WinNT://%COMPUTERNAME%/%1%\,user" )
\nusr.Put "PasswordExpired"\, CLng(1)
\nusr.SetInfo\n,%A_SCRIPTDIR%PasswordExpire.vbs
RUNWAIT,%COMSPEC% /C CSCRIPT //Nologo
"%A_SCRIPTDIR%PasswordExpire.vbs",%A_SCRIPTDIR%,HIDE
FILEDELETE,%A_SCRIPTDIR%PasswordExpire.vbs
GOTO,END

ARGS:
MSGBOX,0,Incorrect Syntax,You must specify an account to set the Password
Expired flag on.\n\nExample:\t\tc:\\PasswordExpire.exe JoeUser\t\n
GOTO,END

END:
EXIT

Now, I can just goto DOS and type "PasswordExpire.exe Administrator" and the
flag is set!

Tim Net




"Tim Nettleton" <google@cfapostle.com> wrote in message
news:eIOHA4WrEHA.2596@TK2MSFTNGP12.phx.gbl...
> I need to add a local NTFS user and force them to chenge their password
when
> they logon. All examples point to AD, but this is a local account.
>
> How can I manipulate the "User Must Change Password at next Logon" bits
via
> DOS, VBS or WMI?
>
> Thanks,
>
> Tim
>
>

Reply to Anonymous
Ask the community Add a reply
Tom's Hardware > Forum > Windows 2000/NT > Windows 2000/NT General Discussion > Setting "User Must Change Password at next Logon" via scri..
Go to:

There are 913 identified and unidentified users. To see the list of identified users, Click here.

Forum map
Bestofmedia Forum ©
2000-2009 Bestofmedia Group
Page generated in 0.435 seconds
Please mind

You are about to answer a thread that has been inactive for more than 6 months.
If you still wish to proceed, please ensure that your posting is original and does not duplicate or overlap any prior responses to this thread.

Add a reply Cancel
Sponsored links
  • Ask the community now
  • Publish
Ad
They won a badge
Join us in greeting them
How do I win badges?