Knowledge Base

Our dedicated Product Specialist team is always ready to help you when you need it the most. Contact Support

Scheduling Password Policy Daily User Counting

Note: This article applies only to Password Policy version 7.6 or later

The Specops Sentinel Service installed on the domain controller holding the PDC emulator role will run a daily task that performs the following operations:

  • Updating the count of Password Policy licenses consumed in the domain
  • Generating and sending password expiration reminder emails (if configured)
  • Expiring user account passwords (enabling the ‘user must change password at next logon’ flag for any user whose password has expired)
  • Breached Password Protection Express List nightly scanning (if configured)

By default, this process runs at midnight local time on the domain controller (00:00). It is possible to change the time if desired.

In the registry on the PDC emulator domain controller, modify the following value with the time in 24-hour hh:mm format for when you would like the nightly scan to run:

[HKEY_LOCAL_MACHINE\SOFTWARE\Specopssoft\Specops Password Policy\SentinelService]
"DailyUserCountTime"="00:00"

For example, to schedule user counting for 8am local time:

[HKEY_LOCAL_MACHINE\SOFTWARE\Specopssoft\Specops Password Policy\SentinelService]
"DailyUserCountTime"="08:00" 

To schedule user counting for 2pm local time:

[HKEY_LOCAL_MACHINE\SOFTWARE\Specopssoft\Specops Password Policy\SentinelService]
"DailyUserCountTime"="14:00" 

Changes will not take effect until the Specops Password Sentinel Service service is restarted. Restart the service, then confirm in the Windows event log that the desired start time is logged (Password Sentinel Service Event ID 1127):

August 10, 2021

Was this article helpful?

Related Articles