Post migration "User must change password at next logon" bit set by default

If you've ever done an Active Directory migration, you've experienced a lot of supporting users with new passwords and logging in to the new domain.  It goes with the territory.  But what if your domain's password complexity is comparable?  Do they have to re-set their password?  No!

ADMT and other directory migration tools will "flip the bit" of "User must change password at next logon" but with PowerShell it's trivial to clear that setting.  Here's a sample of how I accomplished this in my most recent migration:

get-aduser -filter * -searchbase "ou=users,ou=department,dc=domain,dc=local" | Set-ADUser -ChangePasswordAtLogon $false

Users no longer need as much help logging into the new domain because they don't have to create a new password.


Popular posts from this blog

Robocopy Error 31 A device attached to the system is not functioning

Exchange 2010 event errors 2601, 2604, 2501