How to Notify Users of Password Expiration in Active Directory

Notify users about password expiration by changing system policies

How to

Reading time icon 2 min. read

Calendar icon Updated on

by Milan Stanojevic 

updated on

Share this article

Readers help support Windows Report. We may get a commission if you buy through our links. Tooltip Icon

Read our disclosure page to find out how can you help Windows Report sustain the editorial team Read more

Key notes

  • If you want to notify users about password expiration, modify your group policy.
  • For more advanced users, we recommend using PowerShell scripts to automate the process.
Password management is a key element in providing security for all the users within your organization. ADSelfService Plus is the solution that offers all the features to provide:
  • Security for remote and local access with 2FA
  • Reports on users’ password self-service activities
  • Instant password reset alerts to users
  • Access to the password reset/account unlock portal from users’ mobile devices

Get now the best password management tool for your business.

Frequently changing the Active Directory password is a great way to protect it, but many users are wondering if there’s a way to notify users of password expiration in Active Directory.

It’s crucial that you change your password for both security reasons and to avoid Active Directory account lockout.

Password notifications are relatively simple to configure, and in this guide, we’re going to show you a couple of methods that you can use.

How can I notify users of password expiration in Active Directory?

1. Edit Group Policy

  1. Press Windows key + R and enter gpedit.msc. Click OK.
     
  2. Navigate to Computer Configuration and expand Windows Settings. Next, go to Security Settings and select Local Policies. Lastly, choose Security Options.
  3. Now double-click Interactive Logon: Prompt user to change password before expiration in the right pane.
  4. Now adjust Begin prompting this many days before password expires to the desired value.
  5. Save changes.

If you want to notify users of password expiration in Active Directory, this is the simplest method to use.

2. Use Powershell script

Note icon NOTE
This is an advanced solution, and it requires you to read the documentation and manually adjust the script settings before it could work on your network.
  1. Visit meoso’s GitHub page.
  2. Click on Download zip.
  3. Once the file is downloaded, extract it.
  4. Configure the PowerShell file and run it.

3. Use ADSelfService Plus

  1. Log in to the ADSelfService Plus admin portal.
  2. Next, navigate to the Configuration tab. Select Password Expiration Notification. It should be located in the Self-Service section.
  3. Select the domains, OUs, and groups that you want to receive the notification.
     
  4. Set the desired Scheduler Name and choose the Notification Type.
  5. From the Notify via menu select the method you want to use to send notifications.
  6. Next, configure the notification frequency and schedule time.
  7. Now fill in the Subject and Message fields.
  8. Click on Advanced and configure the desired settings.
  9. Save changes.

ManageEngine ADSelfService Plus

Easily notify users about password changes and manage your organization network with ADSelfService Plus software.
Free trial Get it now

As you can see, it’s pretty simple to notify users of password expiration in Active Directory, and you can use any of the methods mentioned in this guide.

To ensure that your passwords are safe, it’s always recommended to use reliable password manager software.

What method do you use to notify users about password expiration? Let us know in the comments below.

More about the topics: Active Directory, Manage passwords

Milan Stanojevic

Milan Stanojevic Shield

Windows Toubleshooting Expert

Milan has been enthusiastic about technology ever since his childhood days, and this led him to take interest in all PC-related technologies. He's a PC enthusiast and he spends most of his time learning about computers and technology. Before joining WindowsReport, he worked as a front-end web developer. Now, he's one of the Troubleshooting experts in our worldwide team, specializing in Windows errors & software issues.