I just installed the free version of PEN. I have 3 AD controllers that are on a 2012 servers.
When I first installed this, I generated a report of users with passwords that expire within 5 days. Everything looked good.
I enabled the program to send the emails out. PEN sent an email to everyone in my company. I had 50+ users get an email saying ” Your password for account "X" expires in 0 day(s).” These are users that had passwords that were not expiring
I verified this by running net user “user” /domain and looking at password expires date.
I disabled the sending of emails and set the program to email the daily report to myself on accounts with passwords expiring in 5 days. After a couple of days the report looked correct. I enabled the program to send emails again for users and had several valid users show up with expiring passwords.
I checked a few of the names on each AD controller and all of their net use “user” /domain information matched up correctly.
I am not sure why the software is generating false reports of expired passwords.
Does this software have an issue with 2012 AD servers?
The software is installed on a 2008r2 server but my AD controllers are 2012.