This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(76.8, 73%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EI%3C/text%3E%3C/svg%3E)
PowerShell command template for a junior IT employee in my small charity school.
We have a hybrid environment, but as I have been informed by the previous system admin that it is recommended to rest the password on-prem than from the admin portal. is it correct?
I need assistance with developing a command that can unlock, reset, and set a password change on next login for on-premise server 2019 using the following information as an example:
Username: John cloud OU: year-12 Login: jcloud@@school.edu.uk
Can anyone help please?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 80%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETB%3C/text%3E%3C/svg%3E)
Hi @IT •
Just checking if there is any progress or question.
Please don't forget to accept helpful answer and close this thread
Hi @IT •
#To unlock user account
Unlock-ADAccount -Identity jcloud
#To reset user password
Set-ADAccountPassword -Identity 'jcloud' -Reset -NewPassword (ConvertTo-SecureString -AsPlainText "p@ssw0rd" -Force)
#Force user to change his password at first logon
Set-Identity 'jcloud' -ChangePasswordAtLogon $true
You can refer to the following links to get more details:
Please don't forget to accept helpful answer
I have an account '******@schoo.edu.uk'
i ran this command get-aduser -identity 'it@alkauthar.academy' but it return an error.
How can I get the identity of the an account please?
Can I save all those command in one powershell file like AIO.ps1 please?
#To unlock user account
Unlock-ADAccount -Identity jcloud
#To reset user password
Set-ADAccountPassword -Identity 'jcloud' -Reset -NewPassword (ConvertTo-SecureString -AsPlainText "p@ssw0rd" -Force)
#Force user to change his password at first logon
Set-Identity 'jcloud' -ChangePasswordAtLogon $true
@IT •**
How can I get the identity of the an account please?**
You should specify the smaccountname if you want use -identity option to filtre the target user.
You can find user samaccount in active directory user and computer console.
it@alkauthar.academy' and ******@schoo.edu.uk are not a format for a sammacount name. They should a mail or UPN.
You can also use a filter to find target based one mail or UPN.
Get-aduser -filter "UserPrincipalName -eq 'it@alkauthar.academy' -or mail -eq 'it@alkauthar.academy'"
Yes you can save all commands in same ps1 script
#To unlock user
Get-aduser -filter "UserPrincipalName -eq 'it@alkauthar.academy' -or mail -eq 'it@alkauthar.academy'" account | Unlock-ADAccount
#To reset user password
Get-aduser -filter "UserPrincipalName -eq 'it@alkauthar.academy' -or mail -eq 'it@alkauthar.academy'" | Set-ADAccountPassword -Reset -NewPassword (ConvertTo-SecureString -AsPlainText "p@ssw0rd" -Force)
#Force user to change his password at first logon
Get-aduser -filter "UserPrincipalName -eq 'it@alkauthar.academy' -or mail -eq 'it@alkauthar.academy'" | Set-ADUSER - -ChangePasswordAtLogon $true
Please don't forget to accept helpful answer
Hi @IT •
Just checking if there is any progress or question.
Please don't forget to accept helpful answer and close this thread
This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
Hi @IT •
Just checking if there is any progress or question.
Please don't forget to accept helpful answer and close this thread