How to set an account expiration date in Active Directory

Posted on Temitope Odemo By Temitope Odemo No Comments on How to set an account expiration date in Active Directory
Active Directory account management

The account expiration date is used for access control purposes. Let us assume an organization temporarily create an AD account for someone that needed access to one of your servers or a workstation, there is every possibility that you can forget to disable the account when the person completes his task. This can open the way for unauthorized access to the organization’s system. The best way to stop this from happening is by automating the process by setting an account expiration date on the AD account. If you need more guides on Windows Active Directory then you can read these: Is my AD user account or service account password correct? How to run an App as a different User and switch Users in Windows, How to create Organisation Units, Service Accounts, and Active Directory Security Groups, and the concept of Active Directory Computer Account.

If the project that the external vendor wants to execute will span some weeks and access will be needed then the system admin will have to set the account expiration to the same number of weeks required so that after this period the account will be automatically disabled.

Furthermore,Kindly refer to these related guides: How to find disabled Active Directory User accounts, Restore AD Objects: How to restore deleted user accounts in Active Directory with Microsoft LDP and PowerShell, How to delegate control for Bitlocker recovery keys in Active Directory, Active Directory Ports: Service and network port requirements for Windows. Follow the next steps on how to set the date on the Active Directory

1: However, Set up the temporary AD account by using the Active Directory Users and Computers

User account expiration settings
Active Directory

2. Moreover, Enter the password for the temporary account

Account lifecycle management
Password Setup

3. In addition, After the account is created then open the Users folder and by the right scroll to the temporary account created and right-click and click Properties.

image-41
Active Directory Users and Computers

4. Nonetheless, Click on the Account tab and in the Account expire section uncheck the Never button and click the End of: button and you can now adjust the date to the approved time that the temporary account should expire and click OK.

image-42
Properties

5. Consequently, If you try to login into the account after this date passed then you should get the message “The user’s account has expired.”

image-43
Account Expired

Similarly, I hope you found this blog post on How to set an account expiration date in Active Directory interesting and helpful. In case you have any questions do not hesitate to ask in the comment section.

Rate this post
Windows Server Tags:, , ,

Related Posts

More Related Articles

Clone a Virtual Machine via Export and Import Clone a VM via Export and Import: Copy Virtual Hard Disk on Hyper-V Virtualization
dfefeq Error 740: Elevated permissions are required to run DISM Windows Server
1 kajkbmlyehn0inifwrh 8w How to install Kerberos packages via Cygwin in Windows Windows Server
Certificates The application /Certsrv does not exist: How to configure Certificate Enrollment Web Services and Certificate Authority Web Enrolment Windows Server
adac Enable Active Directory Recycle Bin: How to delete and restore objects using Active Directory Administrative Center Windows Server
Raise or Downgrade AD Domain and Forest Functional Level Raise or Downgrade AD Domain and Forest Functional Level Windows Server

Leave a Reply