Video Screencast Help

Issue updating AD USers with workflow

Created: 01 Nov 2013 • Updated: 11 Nov 2013 | 3 comments
This issue has been solved. See solution.

Hi guys

I have a strange issue with workflow when updating users in AD. I have successfully updated AD users from several projects but I cannot get workflow to change the "user must change password at next logon" setting. I can successfully update other settings on the account tab in AD as we use a workflow project to disable inactive accounts and the "Account is disabled" setting can be updated without issue. Also, if I reset an AD password via workflow then it successfully ticks the "user must change password at next logon" option in AD. It is only when i try to do this using and UPdate USer component that it fails. No error is given, the process carries on as if it were successful but the setting in AD remains the same.

Has anyone else seen this behaviour or can someone suggest why this might be happening?

Operating Systems:

Comments 3 CommentsJump to latest comment

Justin Dybedahl's picture

I have had this exact issue and managed to fix it by using the Update User component with the following settings:

  1. I set the User Info Source to From Editor.
  2. Open the editor and go to the Attributes tab.
  3. Add an attribute with the name pwdLastSet and set it to -1.

In my case it was setting the "User must change..." attribute every time I used the Reset Password components.  If you have a need to unlock the user's account, you can use the lockoutTime attribute with a value of 0.

evilcatfish's picture

That's a brillaint suggestion. I'll try it out now and let you know how I get on with it but I should imagine that will work. Glad I'm not the only one who has come up against this problem :-)