Working from home and domain password policy
Dear reader,
with the start of Covid-19 all our employees, 1500+ worldwide, were forced to work from home. We have noticed that our endusers are very reluctant to follow our AD password policy that we have applied and most of the time are too late to change it. In that case they are nog longer able to login to the domain and they need to come to the local office to change their password on a wired Lan connection.
Is it possible to create a KACE job so that users are confronted with a general password change and are not able to deny this? Anybody any ideas on how to overcome the issue i described above. Oh and there is no budget for investing in third party tools given the circumstances we are in as a company.
Many thanks for your thoughts and suggestions,
Marcel
Answers (1)
I dont use KACE.
Its a bit of a hack and slash job, but you could create a PowerShell script that checks when the users password was last set, and based off that information you can adjust the users attribute to change password on next login. It would have to run daily.
Not an amazing solution, but will do the job.
BTW, if you have a GPO to flush out profiles after X many days - might want tot extend it out to stop it wiping off the profiles on workstation in the office, since they might not be used for awhie.
