PowerShell Script: Password Expiration Notification
Introduction:
This script checks when user passwords in Active Directory are about to expire and sends an email notification to the users. It helps avoid sudden password expirations, ensuring that your team can continue working without interruptions.
Step-by-Step Instructions:
- Update the Script with Your Information:
- Days Before Expiration: Set how many days before the password expires you’d like the notification to be sent.
- SMTP Server: Enter your SMTP server address for sending emails.
- Sender’s Email Address: Set the email address from which notifications will be sent.
- Email Content: The script includes a template for the email body that will be sent to users. You can customize the message to fit your needs.
- Run the Script:
- You can run this script manually, or you can set it up to run automatically using Task Scheduler.
How to Use:
- Copy and Paste the Script:
- Open PowerShell on a computer that has access to your Active Directory.
- Copy and paste the entire script into the PowerShell window or save it as a
.ps1file.
- Customize It:
- Replace
"smtp.yourcompany.com"with your actual SMTP server address. - Replace
"no-reply@yourcompany.com"with the email address you’d like the notifications to come from. - Set the
$daysBeforeExpirationto the number of days in advance you’d like to notify users before their password expires.
- Replace
- Run the Script:
- Simply run the script in PowerShell to check for any passwords that are about to expire and send notifications.
- You can schedule this script to run automatically using Task Scheduler to make sure it’s consistently checking.
# This script is made by VxLogic
# For more information, visit our website or contact us directly.
# 1. Configuration: Customize the values below to match your environment.
$daysBeforeExpiration = 14 # Number of days before password expiration to send notification
$smtpServer = "smtp.yourcompany.com" # SMTP server address
$fromAddress = "no-reply@yourcompany.com" # Sender's email address
$subject = "Password Expiration Notification"
$bodyTemplate = @"
Hello {0},
This is a friendly reminder that your password will expire in {1} days. Please ensure that you change your password before it expires to avoid any disruption in your access.
If you have any questions or need assistance, please contact IT support.
Thank you,
Your IT Team
"@
# 2. Script Execution: The script checks for users with passwords that are about to expire and sends an email notification.
# Get the current date and time
$currentDate = Get-Date
# Calculate the date when passwords will expire
$expirationThreshold = $currentDate.AddDays($daysBeforeExpiration)
# Get users from Active Directory whose passwords are about to expire
$users = Get-ADUser -Filter {(Enabled -eq $True) -and (PasswordNeverExpires -eq $False) -and (PasswordLastSet -gt 0)} -Property DisplayName, EmailAddress, PasswordLastSet, msDS-UserPasswordExpiryTimeComputed
foreach ($user in $users) {
$passwordExpirationDate = [datetime]::FromFileTime($user."msDS-UserPasswordExpiryTimeComputed")
$daysToExpiration = ($passwordExpirationDate - $currentDate).Days
if ($daysToExpiration -le $daysBeforeExpiration -and $daysToExpiration -gt 0) {
# Prepare the email body
$body = [string]::Format($bodyTemplate, $user.DisplayName, $daysToExpiration)
# Send the email notification
Send-MailMessage -SmtpServer $smtpServer -From $fromAddress -To $user.EmailAddress -Subject $subject -Body $body -Priority High
Write-Host "Notification sent to $($user.DisplayName) ($($user.EmailAddress)) - $daysToExpiration days until password expiration."
}
}
Write-Host "Password expiration notifications have been processed."
PowerShell Script: Password Expiration Notification
Looking for More Solutions?
Do you have more complex needs or are you looking for a different script? Contact us today to see how VxLogic can help you!
Check out our Facebook page for more scripts
Check out our Linkedin page for more scripts