Post migration "User must change password at next logon" bit set by default

If you've ever done an Active Directory migration, you've experienced a lot of supporting users with new passwords and logging in to the new domain.  It goes with the territory.  But what if your domain's password complexity is comparable?  Do they have to re-set their password?  No!

ADMT and other directory migration tools will "flip the bit" of "User must change password at next logon" but with PowerShell it's trivial to clear that setting.  Here's a sample of how I accomplished this in my most recent migration:

get-aduser -filter * -searchbase "ou=users,ou=department,dc=domain,dc=local" | Set-ADUser -ChangePasswordAtLogon $false


Users no longer need as much help logging into the new domain because they don't have to create a new password.

Comments

Popular posts from this blog

ADMT fails to migrate SID History

Exchange 2010 event errors 2601, 2604, 2501

Robocopy Error 31 A device attached to the system is not functioning