Password reminder PS1

---

Hi All,

I was looking for a PowerShell script which will send password expiry email reminders to staff when their password is about to expire in 10days, 7days, 5days and 3days

I have the below script which reminds them when 4 days are left and then everyday until expiry date. Just wanted to update so it gets sent when 10days left, 7days left 5days left then 3days.

Import-Module ActiveDirectory


### Function to extract remaining Days ######

Get-ADUser -filter * -properties PasswordLastSet,EmailAddress,GivenName -SearchBase "DC=domain,DC=local" |foreach {

   $PasswordSetDate=$_.PasswordLastSet
   $maxPasswordAgeTimeSpan = $null
   $maxPasswordAgeTimeSpan = (Get-ADDefaultDomainPasswordPolicy).MaxPasswordAge 
   $today=get-date
   $ExpiryDate=$passwordSetDate + $maxPasswordAgeTimeSpan
   $daysleft=($ExpiryDate - $today)
  

 

   $display=$daysleft.days
   $UserName=$_.GivenName

if ($display -lt 5 -and $display -gt 1){

####### Email Message   ###########


$MyVariable = @"
$UserName, your network password will expire in $display day(s)
  
To change your password, please follow the instructions below:- 

For your password to be valid it must  12 or more characters long and contain a mix of THREE of the following FOUR properties:

- uppercase letters (A-Z)
- lowercase letters (a-z)
- numbers (0-9)
- symbols (!"?$%^&*)


*** This is automatically generated email - please do not reply ***



"@

 

send-mailmessage -to $_.EmailAddress -from administrator@domain.com -Subject "Password Expiry Reminder Notification" -body $MyVariable  -smtpserver exchange server

}

}

Anyway I can update the below script to include the user name so it addresses them in the email body?

$users = Get-ADUser -filter {Enabled -eq $True -and PasswordNeverExpires -eq $False -and PasswordLastSet -gt 0} -SearchBase "OU=company ltd,dc=domain,dc=local" `
 -Properties "Name", "EmailAddress", "msDS-UserPasswordExpiryTimeComputed" | ` Select-Object -Property "Name", "EmailAddress", `
 @{Name = "PasswordExpiry"; Expression = {[datetime]::FromFileTime($_."msDS-UserPasswordExpiryTimeComputed").tolongdatestring() }}

$TenDayWarnDate = (get-date).adddays(10).ToLongDateString()
$SevenDayWarnDate = (get-date).adddays(7).ToLongDateString()
$ThreeDayWarnDate = (get-date).adddays(3).ToLongDateString()
$OneDayWarnDate = (get-date).adddays(1).ToLongDateString()

$AdminEmailBody = ""

foreach ($user in $users) {
 if ($user.PasswordExpiry -eq $SevenDayWarnDate) {
 Write-Host "7 days warn "$user.EmailAddress
 $EmailBody = "Your network password will expire in 7 day(s) 
Send-MailMessage -From "Password Reminder<noreply@domain.com>" -To $user.EmailAddress -Subject "Password Expiry Reminder Notification" -Body $EmailBody -SmtpServer "exchangeDomain"
 $AdminEmailBody = $AdminEmailBody + $user.EmailAddress + " domain password expires in 7 days on " + $user.PasswordExpiry + " .  Mail sent.`r`n"
 }

Any ideas on how I can tweak the script to include the Users name in email body?

Thanks