Any idea how I can simply get all users in my domain with expired passwords? Doesn't seem like it should be that difficult.
by mikefrobbins at 2012-10-30 18:41:14
Get-ADUser is one of those cmdlets that's what I call "pre-filtered". It doesn't include the PasswordExpired property by default. You have to add it with the -Properties parameter. I've added a filter so it also only returns enabled users.