0 votes

Hi Team

I am testing out a scheduled task to send out an email for password self service enrolment and located a previous question which suggested using the adm-PasswordSelfServiceEnrollmentPolicyDN property to determine if a user is enrolled or not however during my tests if i scope the task to a set of users which contains some already enrolled users the enrolled users also receive the enrolment invitation

Is the adm-PasswordSelfServiceEnrollmentPolicyDN property still the correct one to use with the value of empty or has the state of a users self service enrollment moved to another property?

by (90 points)

1 Answer

0 votes
by (294k points)

Hello Richard,

Unfortunately, the approach will not work as new authentication options were added since 2012 (e.g. via mobile applications). However, there is currently a setting in Password Self-Service policies that specifies how often enrollment notifications should be automatically sent to users who are not enrolled yet. image.png

If using the option does not meet your needs, please, provide all the possible details regarding the desired behavior with live examples.

0

Basically we want to send through a preliminary invitation html email targetting staff who have yet to enroll with more information about password self service via a scheduled task and then have another scheduled task which is a more compact html version of the same email which will be reminding the staff to enroll.

0

Hello Richard,

Thank you for clarifying. It can be done using a scheduled task configured for the Domain-DNS object type that will send the reminders in bulk. For us to provide you with detailed instructions, please, specify how exactly should it be distinguished whether a user should receive the first email or the second one. A live example of the desired workflow would be much appreciated.

Related questions

0 votes
1 answer

I need to create a scheduled task that disables AD accounts if inactive for 30 days and then send me an email that it has run. I've got the account disable part working but ... that was disabled but i need it to work once if it disabled any accounts or not.

asked Mar 23, 2021 by Jmbrown04 (60 points)
0 votes
1 answer

I'm in the process of creating a Web interface for requesting IT accounts. Upon submission, I want to run a Powershell script that will create an item in a Sharepoint task list.

asked May 14, 2021 by sandramnc (870 points)
0 votes
1 answer

If I have a scheduled task powershell script that's targeting an OU of users and in that script I were to call $context.cancel in the case of an error happening for a single ... it cancel the entire scheduled tasks and it won't run for other users in that OU?

asked Oct 18 by wrichardson (20 points)
0 votes
1 answer

Hello, I've created a custom command to run a script which will send an email alert if the script encounters an error. I have the command set to run as a scheduled task ... script that sends it: Custom Command Name: Task Name: Time: Error Message: Thank you.

asked Sep 17 by GronTron (320 points)
0 votes
1 answer

Similar to Powershell's "whatif"? I'd like to enable this scheduled task - But would like to confirm who will actually be affected before enabling this. Is there at least ... objects in the console log? I could run that before adding the 'modify' actions back.

asked Jun 25 by msinger (210 points)
3,588 questions
3,277 answers
8,303 comments
548,090 users