How to set an account expiration date in Active Directory

Posted on Temitope Odemo By Temitope Odemo No Comments on How to set an account expiration date in Active Directory
Active Directory account management

The account expiration date is used for access control purposes. Let us assume an organization temporarily create an AD account for someone that needed access to one of your servers or a workstation, there is every possibility that you can forget to disable the account when the person completes his task. This can open the way for unauthorized access to the organization’s system. The best way to stop this from happening is by automating the process by setting an account expiration date on the AD account. If you need more guides on Windows Active Directory then you can read these: Is my AD user account or service account password correct? How to run an App as a different User and switch Users in Windows, How to create Organisation Units, Service Accounts, and Active Directory Security Groups, and the concept of Active Directory Computer Account.

If the project that the external vendor wants to execute will span some weeks and access will be needed then the system admin will have to set the account expiration to the same number of weeks required so that after this period the account will be automatically disabled.

Furthermore,Kindly refer to these related guides: How to find disabled Active Directory User accounts, Restore AD Objects: How to restore deleted user accounts in Active Directory with Microsoft LDP and PowerShell, How to delegate control for Bitlocker recovery keys in Active Directory, Active Directory Ports: Service and network port requirements for Windows. Follow the next steps on how to set the date on the Active Directory

1: However, Set up the temporary AD account by using the Active Directory Users and Computers

User account expiration settings
Active Directory

2. Moreover, Enter the password for the temporary account

Account lifecycle management
Password Setup

3. In addition, After the account is created then open the Users folder and by the right scroll to the temporary account created and right-click and click Properties.

image-41
Active Directory Users and Computers

4. Nonetheless, Click on the Account tab and in the Account expire section uncheck the Never button and click the End of: button and you can now adjust the date to the approved time that the temporary account should expire and click OK.

image-42
Properties

5. Consequently, If you try to login into the account after this date passed then you should get the message “The user’s account has expired.”

image-43
Account Expired

Similarly, I hope you found this blog post on How to set an account expiration date in Active Directory interesting and helpful. In case you have any questions do not hesitate to ask in the comment section.

Rate this post
Windows Server Tags:, , ,

Related Posts

More Related Articles

VPNonWindows Configure VPN on Windows Server: How to allow remote VPN Access for Domain or Local Users Windows Server
How to Block IP Addresses Using Group Policy (GPO) in Active Directory Block IP Addresses Using Group Policy (GPO) in Active Directory Network | Monitoring
banner How to Create a Child and Tree Domain Windows Server
WSUS Analysis and Initial Assessment Preliminary Guide for WSUS Analysis and Initial Assessment Windows Server
MECM Deployment copy How to install Endpoint Configuration Manager on HyperV VM Windows Server
41592 3264bitw10 What is the difference between 32-bit and 64-bit processors Windows Server

Leave a Reply