1. Support
  2. Tutorials
  3. Scope Action – How to notify end users of their password expiration date

Scope Action – How to notify end users of their password expiration date

In this tutorial we will be setting up a scope action to send an email directly to the end user or a pop up on the PC that they are logged into, notifying them of their password expiration date.

Disclaimer:

**These tutorials are for demonstration purposes. Please test all Scope Actions before deploying them into production.**

Tutorial

1. Go to the Global Management via Scope Action console and click on Add New Scope Action. If you have never created a Scope Action before, please refer to the below video and the Scope Action Creation Basics article for more information.

2. Type your designated Scope Action Name and Description. In this case we will call it Email Users Password Expiration Date with the description Sends an email to end user with expiration date of AD password.

3. Click Next, then on the left pain under Target Object Type select the object you will be working with. In this case we will click Users then double click Add New.

4. The Scope Module window will appear. Choose the item specific under Adding Items according to where you want to select your group of users. In this case we will be selecting 1 individual user via the Add Individual Objects item.

5. After selecting the objects that you will be working with, click on OK, which will bring you back to the Scope window where you can see your scope selection. Click Next.

6. You will now be at the Action Modules window, double click Add New.

7. Click on Add/Remove. Then Execute User Action > Send Email

8. You will now be at the Set Arguments: Send Email window. We will select the following for each:

 

To Email:
1. Click on Set Dynamic Value Definition (in the upper left hand corner while in this selection box)
2. Press the Insert key on your keyboard, which will provide specific values that we will be selecting.
a. In standard Active Directory cases the users email will be filled within the Email field of their account so you can simply select User Account Information > Email.
b. In our case we do not have the email field setup for our users, but our standard email format is firstname.lastname@domain.com so we will be selecting the following parameters:
1. User Account Information > Last Name
2. User Account Information > First Name
3. Use the arrow keys to move the cursor in between the values and type the dot symbol “.” in between both values.
4. Then add your “@domain.com” at the end.
It should look as follows:

Note:

If your email format is ADUsername@domain.com you can select the “AD Account name” value or “NT Account Name”.

From Email: Email account that will be sending the email.
Subject: In this case we will be titling the subject: Password Expiry Notice
Email Body: We will be using the Dynamic Value Definition in this box as well to select the following value: User Account Information > Password Expiration Days

We will then type in front of it (choose what message you please) for this case we will use: Your password will be expiring in {User Account Information:Password Expiration Days(0)} days.

It should look as follows:

SMTP Server: Enter your SMTP server info.
SMTP Port: Change this according to your configuration, default will be set to 25.
SMTP User ID: Enter a user ID that has access to the SMTP server.
SMTP Password: Enter the password of the above user.
The above should look as follows:

9. We will now configure the Desktop Pop-up, if you do not want to configure this option skip to Step 11.

Click on Add/Remove > Execute User Action > Logged-In Computers > Send popup message

10. You will now be at the Set Arguments: Send popup message window. We will select the following for each:
Message:
1. Click on Set Dynamic Value Definition (in the upper left hand corner while in this selection box)
2. Press the Insert key on your keyboard, which will provide specific values that we will be selecting:

User Account Information > Password Expiration Days
We will then type in front of it (choose what message you please) for this case we will use: Please change your password as it will be expiring {User Account Information:Password Expiration Days(0)} days.

It should look as follows:

Signature: Input whom you would like to indicate as the originator of the message.
Schedule if no user is logged-on: Select True/False. If no user is logged-on, schedule the action to be executed upon the first logon.
It should look as follows:

11. We will now set the User Condition to only email users who’s password is going to expire in less than two weeks.
Select Add/Remove > Set User Condition > User Account Information > Password Expiration Days.
Condition: <

Desired Value: The “Set Condition value: Password Expiration Days” window will open. In this case we are setting it to notify users when their password will be expiring in less than 7 days. You can set this to whatever number you please.

12. You will now be taken to the What Next window which will allow you to set the schedule. In this case we will set it to daily under Then > On the following schedule: > define new schedule > New > Schedule Task: Daily > Start Time: 9:00 AM.

Example of email:

Example of pop message:

Was this article helpful?

Related Articles