Home / server / Questions / 758191
In Process
Mike S
Asked: 2016-02-19 10:19:33 +0800 CST

How can a Windows user change the initial password from the command line in a remote domain?

  • 772

We have Windows 7 desktops and a Windows Server 2012R2 server. I have a user who needs to map a network drive which is on a server in a different AD domain from ours (over the WAN). I have created an account for him in AD over there, and I set it to "User must change password at next logon". How can he map the network drive?

Mapping is easy to do, ostensibly... But when he attempts to do so, Windows gives an error that he must change his password, yet it does not provide a prompt to do so.

I have no desktops in the remote domain that he can log into. Is there a way to set the password remotely? I have checked https://serverfault.com/questions/570476/how-can-a-standard-windows-user-change-their-password-from-the-command-line but I don't think the techniques given work over two separate domains. Furthermore I'm not a Powershell user :-( (I can answer your Bash questions, though! :-) )

Thanks.

windows

1 Answers

  1. This does not require any exotic knowledge of Powershell. All you need is to have Active Directory PowerShell Module installed and then use Set-ADAccountPassword cmdLet. Works for users with or without "must change password on next logon"

    $env:userdnsdomain
blue.com
Set-ADAccountPassword -id eFudd -server someDC.green.com
Please enter the current password for 'CN=Elmer Fudd,OU=Users,DC=green,DC=com'
Password: ********
Please enter the desired password for 'CN=Elmer Fudd,OU=Users,DC=green,DC=com'
Password: ********
Repeat Password: ********
    • 1