Ready to break up with some of the most common IT time wasters? Read this article for how-to automating your IT tasks! Password resets and provisioning new devices couldn’t be easier.

Helpdesks and IT teams are inundated with repetitive, timeconsuming, often low-value tasks that distract from larger strategic projects. With most IT leaders saying their staff is already stretched thin, this leaves little room for important projects that will lead to greater organizational productivity and efficiency.

Add to this the cost and complexity of point solutions for frequent issues, technician training costs, and lost productivity, and the cost of even simple remediation tasks can creep up quickly.

Most of the repetitive, time-consuming, and low-value tasks that plague helpdesks can be automated away through scripts and automation engine.

Spend less time (and money) on repetitive, time-consuming tasks

Learn how to:

• Reduce ticket volume 20%-50% by automating password resets
• Stop relying on end users to regularly reboot their devices
• Enable users to restore their own files and save your team time

Tasks this guide will help you automate

This guide will show you how to help your IT team spend less time on common IT tasks and give you step-by-step instructions on how to setup these processes. Here is what it will cover:

• Reset passwords
• Reboot endpoints
• Protect business data
• Free up disk space
• Manage antivirus threats
• Deploy software
• Setup a new computer
• Setup user permissions to ensure security
• Patch Windows, Mac, and Linux computers
• Report on IT processes and outcomes

1. Reset passwords

By some estimates, password resets account for 20 – 50% of all helpdesk tickets. It’s a critical, but low-value task and no matter how quickly you do it, it’s not fast enough. Minimizing the time your team spends on password resets will improve end-user satisfaction and save your team significant time.

Here are solutions to automate password reset task and save time and effort for IT teams:

Self-Service Password Reset Portal (SSPR) Tool

Set up a self-service password reset portal where users can reset their passwords independently.
Users should authenticate themselves through security questions, email verification, or other means.
Provide clear instructions and guidelines on the portal to ensure users can easily navigate and reset their passwords.

SSPR tools allow users to reset their own passwords without having to contact the IT help desk. This can save the IT team a significant amount of time, as they will no longer be fielding password reset requests. There are many different SSPR tools available, both commercial and open source. Some popular SSPR tools include:

• ADSelfService Plus
• Password Manager Pro
• Thycotic Secret Server
• ManageEngine Password Manager Pro
• LastPass

To configure an SSPR tool, you will need to:

• Create a user account for each user who will be using the tool.
• Configure the tool to allow users to reset their own passwords.
• Configure the tool to send users notifications when their passwords expire or are compromised.

Step 1: Setup Portal: Deploy a web-based self-service portal accessible to users within your organization.

Step 2: User Verification: Implement multi-factor authentication (MFA) for secure identity verification.

Step 3: User Registration: Users should pre-register their accounts with alternate contact information like email or phone number.

Step 4: Password Reset: Configure the portal to provide a step-by-step process for password reset.

Step 5: Notification: Notify users via email or SMS about successful password changes.

Step 6: Monitoring: Implement logging and monitoring to track password reset activities.

Use Microsoft’s Azure Active Directory (Azure AD) self-service password reset (SSPR)

To configure it, you need to:

Step 1: Sign in to the Azure portal as a global administrator.

Step 2: Browse to Azure Active Directory > Password reset.

Step 3: On the Properties page, switch the Status from “None” to “Selected” or “All”.

Step 4: Configure the required number of methods to reset password and notifications.

Step 5: Save the changes.

Use a self-service password reset tool, such as ADSelfService Plus

Allows users to reset their own passwords without contacting the IT team. To configure this solution, you need to:

Step 1: Install and run ADSelfService Plus on a server that can communicate with your Active Directory domain controller.

Step 2: Configure the self-service policy settings, such as the enrollment options, the verification methods, the password complexity rules, and the automation frequency.

Step 3: Enroll the users in the self-service portal, either manually or automatically, and ask them to provide their verification details, such as email, phone number, security questions, etc.

Step 4: Educate the users on how to access the self-service portal and reset their passwords using their verification details

Use a self-service password reset software like Microsoft Entra ID

This software is a complete identity and access management solution that connects users to their apps, devices, and data. It also helps protect from identity compromise by using advanced security features like conditional access, identity protection, and privileged identity management. To configure this software, you need to:

Step 1: Sign up for a Microsoft Entra ID plan or use the free edition if you have less than 50,000 users.

Step 2: Set up your identity sources, such as Active Directory, Azure AD, or other cloud directories.

Step 3: Configure the self-service password reset and account unlock policies in the Entra ID portal.

Step 4: Enable the self-service password reset and account unlock features for your users in the Entra ID portal.

Step 5: Test the self-service password reset and account unlock functionality using the Entra ID app or web browser.

Use an automated password reset tool like N-able Passportal plus Blink

This tool allows users to autonomously reset their passwords across various platforms, such as Active Directory, Windows, Azure AD, and Microsoft 365. It also provides security features like multifactor authentication, encryption, and auditing. To configure this tool, you need to:

Step 1: Sign up for a free trial or purchase a subscription from the N-able website.

Step 2: Download and install the Passportal agent on your domain controller and the Blink app on your users’ devices.

Step 3: Configure the settings and policies for password reset and account unlock in the Passportal web portal.

Step 4: Enroll your users and assign them authentication methods, such as email, SMS, or biometrics.

Step 5: Test the password reset and account unlock functionality using the Blink app.

Use a web-based system, such as Google Forms

Collect password reset requests via an online form and execute them using scripts. To configure this solution, you need to:

• Create and publish an online form for your password reset service, using Google Forms or other similar tools, and ask users to provide their information and verification details.
• Write a script that runs when a new response is submitted to the form, using Google Apps Script or other similar tools.
• Connect the script with your Active Directory or other identity provider, using APIs or custom integrations, to enable the script to verify the user’s identity and reset their password.
• Test and monitor the system’s performance and user feedback, and improve it as needed.

Use a web-based password reset solution like ManageEngine ADSelfService Plus

This solution is an integrated Active Directory self-service password management and single sign-on solution. It allows users to reset their passwords and unlock their accounts from a web browser or mobile app. It also supports multiple authentication methods, such as security questions, email verification, SMS verification, Google Authenticator, etc. To configure this solution, you need to:

Step 1: Download and install the ADSelfService Plus server on your domain controller or a separate machine.

Step 2: Configure the ADSelfService Plus settings and policies for password reset and account unlock in the web console.

Step 3: Enroll your users and assign them authentication methods in the web console.

Step 4: Test the password reset and account unlock functionality using the ADSelfService Plus web portal or mobile app.

Use a PowerShell script to automate password reset and account unlock tasks

PowerShell is a scripting language that can be used to perform various administrative tasks on Windows systems. You can write a PowerShell script that can generate random passwords, reset passwords, unlock accounts, send notifications, etc. To use this solution, you need to:

Step 1: Install PowerShell on your domain controller or a separate machine.

Step 2: Write a PowerShell script that can perform password reset and account unlock tasks using Active Directory cmdlets.

Step 3: Schedule the PowerShell script to run at regular intervals using Task Scheduler or another scheduling tool.

Step 4: Test the password reset and account unlock functionality by running the PowerShell script manually or checking the logs.

Use a cloud-based identity service like Okta

Okta is a cloud-based platform that provides identity and access management solutions for various applications and devices. It allows users to reset their passwords and unlock their accounts using a web browser or mobile app. It also supports multiple authentication methods, such as email verification, SMS verification, security questions, etc. To use this solution, you need to:

Step 1: Sign up for an Okta plan or use the free edition if you have less than 2,000 users.

Step 2: Set up your identity sources, such as Active Directory, Azure AD, or other cloud directories.

Step 3: Configure the self-service password reset and account unlock policies in the Okta admin console.

Step 4: Enable the self-service password reset and account unlock features for your users in the Okta admin console.

Step 5: Test the self-service password reset and account unlock functionality using the Okta web portal or mobile app.

Use a password management tool

Password management tools can help users to create and manage strong passwords for all of their online accounts. This can help to reduce the number of password reset requests that the IT team receives, as users will be less likely to forget their passwords if they are using a password manager. There are many different password management tools available, both commercial and open source.

Use a password manager tool that securely stores and manages the user’s passwords for different applications and devices. This tool can be configured to generate strong and unique passwords for each account, and to autofill the login credentials when the user accesses the account. The tool can also be configured to require a master password or biometric authentication from the user before accessing the stored passwords. The user only needs to remember the master password and does not need to contact the IT team for password reset requests for different accounts.

Some popular password management tools include:

• LastPass
• 1Password
• Dashlane
• Keeper
• Bitwarden

To configure a password management tool, you will need to:

• Create a master password for the tool.
• Share the master password with the users who will be using the tool.
• Configure the tool to store passwords for all of the users’ online accounts.

To use LastPass:

Step 1: Install the LastPass browser extension and create an account.

Step 2: Add sites to your LastPass vault.

Step 3: When logging in to a site, LastPass will auto-fill your credentials.

Two-Factor Authentication (2FA) / Multi-Factor Authentication (MFA)

MFA requires users to provide two or more pieces of identification to authenticate themselves. This can help to prevent unauthorized access to accounts, even if a user’s password is compromised. Implement a two-factor authentication system to enhance security and simplify password reset. Users can reset their password by verifying their identity through a second factor, such as a one-time password (OTP) sent to their mobile device. Configure the 2FA system to integrate with your existing authentication infrastructure.

There are many different MFA solutions available, both commercial and open source. Some popular MFA solutions include:

• Duo Security
• Okta
• Auth0
• Ping Identity
• Microsoft Azure MFA

To configure MFA, you will need to:

• Purchase an MFA solution.
• Configure the MFA solution to work with your organization’s directory service.
• Enable MFA for all users who need it.

Google Authenticator is a commonly used MFA tool. To set it up:

Step 1: Download the Google Authenticator app on your mobile device.

Step 2: In your Google account, go to “Security” > “2-Step Verification”.

Step 3: Click “Get Started” and follow the prompts to set up the Authenticator app.

Single Sign-On (SSO) with Password Reset Integration

Utilizing a Single Sign-On solution with password reset integration simplifies the authentication process and provides a streamlined password reset method.

Step 1: Select SSO Provider: Choose an SSO provider that supports password reset integration.

Step 2: User Directory Integration: Integrate your user directory (like Active Directory) with the SSO provider.

Step 3: Password Policies: Configure password policies within the SSO provider.

Step 4: Password Reset Option: Enable the password reset option within the SSO login page.

Step 5: User Notification: Notify users about the SSO-based password reset process.

Password Synchronization

Use a password synchronization tool that allows users to have a single sign-on experience across different applications and devices. This tool can be configured to automatically update the user’s password in all the connected systems whenever the user changes their password in one system. This way, the user only needs to remember one password and does not need to contact the IT team for password reset requests for different systems.

• Deploy a password synchronization tool that automatically synchronizes passwords across different systems and applications.
• When users reset their password in one system, the tool updates the password in all connected systems.
• Choose a password synchronization solution compatible with your existing infrastructure and ensure proper configuration.

Password Expiration Notification

Implement a password expiration notification system to proactively remind users to change their passwords.

• Configure the system to send email notifications to users when their passwords are nearing expiration.
• Include instructions in the notifications on how to reset passwords using the self-service portal or other automated methods.

Automated Password Expiry Reminders

Automated reminders about password expiry prompt users to change passwords before they expire, reducing last-minute password reset requests.

Step 1: Script Setup: Develop a script to periodically check password expiry dates for users in your directory.

Step 2: Notification: Send automated email notifications to users well in advance of password expiration.

Step 3: Reminder Frequency: Customize the frequency and timing of reminders based on your organization’s policies.

Password Expiration Policy

Use a password expiration policy that forces users to change their passwords periodically, such as every 90 days. This policy can be enforced by the Active Directory or other identity management systems, and can also be customized to apply different rules for different groups of users, such as administrators, managers, or employees. The policy can also be configured to send email reminders to users before their passwords expire, and to lock out users who fail to change their passwords within the grace period.

A password expiration policy defines how often users must change their passwords. This can help to reduce the risk of password compromise, as attackers will have less time to crack a user’s password before it expires. The password expiration policy should be configured to expire passwords every 90 days or less.

Chatbot-Assisted or Virtual Assistant Password Reset

Develop a chatbot or virtual assistant that can handle password reset requests through natural language processing. Users can interact with the chatbot or virtual assistant via a web interface or messaging platforms. Configure the system to authenticate users and guide them through the password reset process, providing necessary instructions and verifying identity.

It’s important to note that the implementation steps and configurations for each solution may vary depending on your specific environment and existing infrastructure. It is recommended to consult with your IT team or a professional to ensure proper setup and security measures are in place.

Use a chatbot or a virtual assistant, such as Microsoft Power Virtual Agents, that can interact with users and guide them through the password reset process. To configure this solution, you need to:

• Create and publish a chatbot using Power Virtual Agents, either on a website or a messaging platform, such as Teams or Slack.
• Design and build a conversation flow for the password reset scenario, using the graphical interface or the natural language understanding capabilities of Power Virtual Agents.
• Integrate the chatbot with your Active Directory or other identity provider, using Power Automate or custom connectors, to enable the chatbot to verify the user’s identity and reset their password.
• Test and monitor the chatbot’s performance and user feedback, and improve it as needed.

Explanation: Implementing a chatbot for password reset tasks provides a user-friendly interface and reduces the need for manual IT intervention.

Step 1: Select Chatbot Platform: Choose a chatbot platform that supports integration with your user directory and password reset mechanisms.

Step 2: Integration: Integrate the chatbot with your authentication systems and user directory.

Step 3: User Interaction: Train the chatbot to understand password reset requests and guide users through the process.

Step 4: Verification: Implement identity verification steps, such as security questions or MFA.

Step 5: Reset Process: Enable the chatbot to trigger password resets for authenticated users.

Use a voice-based system, such as Amazon Connect

Handle password reset requests over the phone using speech recognition and synthesis. To configure this solution, you need to:

• Set up and configure an Amazon Connect instance, and create a phone number for your password reset service.
• Create a contact flow for the password reset scenario, using the graphical interface or the AWS Lambda functions of Amazon Connect.
• Integrate the contact flow with your Active Directory or other identity provider, using AWS services or custom integrations, to enable the system to verify the user’s identity and reset their password.
• Test and monitor the system’s performance and user feedback, and improve it as needed.

Use an email-based system, such as Microsoft Outlook

Process password reset requests via email using rules and macros. To configure this solution, you need to:

• Create and configure an email account for your password reset service, and set up an auto-reply message that instructs users on how to request a password reset.
• Create a rule that triggers a macro when an email with a specific subject line or keyword is received by the email account.
• Write a macro that extracts the user’s information from the email body, verifies their identity using your Active Directory or other identity provider, resets their password, and sends them a confirmation email.
• Test and monitor the system’s performance and user feedback, and improve it as needed.

API-Driven Password Reset Automation

Using APIs to automate password reset processes offers a flexible and customizable approach for different systems and scenarios.

Step 1: API Setup: Develop or leverage APIs provided by your authentication system.

Step 2: Authentication: Implement proper authentication and authorization mechanisms for API access.

Step 3: User Interaction: Create an interface (web page, mobile app, etc.) to interact with the API.

Step 4: Identity Verification: Include secure identity verification methods like email links or SMS verification codes.

Step 5: Password Reset: Use the API to trigger password reset actions within your authentication system.

Use AI-Powered IT Service Management (ITSM) Tools

These tools, like ServiceNow, can automate password resets using AI. To set this up in ServiceNow:

Step 1: Log in to ServiceNow as an admin.

Step 2: Navigate to “System Definition” > “Business Rules”.

Step 3: Create a new rule that triggers a password reset when certain conditions are met.

Step 4: Test the rule to ensure it works correctly.

Educate users about password security

The best way to prevent password reset requests is to educate users about password security. Users should be taught to create strong passwords, to never share their passwords, and to change their passwords regularly. You can educate users about password security through:

• Email newsletters
• In-person training sessions
• Password security posters
• Password security videos

2. Restart services

Often, when an application crashes, behaves unexpectedly, or can’t be accessed, the simple solution is to restart the service. This happens frequently enough that it can bog down IT in high volume, but low-value tickets. This can be especially common with onpremises line-of-business applications used across an organization. Reducing service restarts to the click of a button — or automating away service restarts — can significantly reduce helpdesk workload.

Here are solutions to automate restart services task and save time and effort for IT teams:

Use Task Scheduler

Task Scheduler is a built-in Windows tool that can be used to automate tasks. You can use Task Scheduler to create a task that will restart a service at a specific time or interval.

To configure Task Scheduler to restart a service, you will need to:

Step 1: Open Task Scheduler by clicking Start > Run and typing taskschd.msc.

Step 2: In the Task Scheduler Library, right-click on the folder for the user or computer that you want to create the task for.

Step 3: Select New Task.

Step 4: In the General tab, enter a name and description for the task.

Step 5: In the Triggers tab, select the When is the task scheduled to start? option and specify the time or interval that you want the task to run.

Step 6: In the Actions tab, select the Start a program option and enter the path to the program or script that you want to run to restart the service.

Step 7: In the Conditions tab, you can specify conditions that must be met before the task will run. For example, you can specify that the task will only run if the service is stopped.

Step 8: In the Settings tab, you can specify additional settings for the task, such as whether the task should run whether the user is logged on or not.

Step 9: Click OK to create the task.

Use the Recovery tab in the Services application

This allows you to configure the actions that Windows will take when a service fails, such as restarting the service, running a program, or rebooting the computer. You can also set the reset interval and the failure count. To use this solution, follow these steps:

Step 1: Open Services.msc and double-click on the service that you want to configure.

Step 2: Click on the Recovery tab and select the actions that you want for the first, second, and subsequent failures. For example, you can choose Restart the Service for all failures.

Step 3: Optionally, you can also specify a command to run when a service fails, such as sending an email notification or logging the event.

Step 4: Click OK to save the changes.

Use the SC command to configure the service failure actions from the command line

This allows you to use the same options as in previous solution, but without using the graphical interface. To use this solution, follow these steps:

Step 1: Open a command prompt as an administrator and type the following command: SC failure reset= actions=

Step 2: Replace with the name of the service that you want to configure, with the number of seconds after which to reset the failure count, and with a slash-separated list of actions and their delay times in milliseconds. For example, you can use restart/30000/restart/60000/run/60000 to restart the service after 30 seconds for the first failure, after 60 seconds for the second failure, and run a command after 60 seconds for subsequent failures.

Step 3: Optionally, you can also specify a command to run when a service fails by adding another parameter: SC failure command= “”. Replace with the path and name of the executable or script that you want to run.

Step 4: Press Enter to execute the command.

Use PowerShell to restart a service using a scheduled task

This allows you to use a single command to restart a service at a specific time interval or trigger. To use this solution, follow these steps:

Step 1: Open Task Scheduler and click on Create Task in the Actions pane.

Step 2: On the General tab, give your task a name and description, and select Run whether user is logged on or not.

Step 3: On the Triggers tab, click on New and select the schedule or event that you want to trigger your task. For example, you can choose Daily and set a start time.

Step 4: On the Actions tab, click on New and select Start a program as the action type. In the Program/script box, type powershell.exe. In the Add arguments box, type -command “Restart-Service ”. Replace with the name of the service that you want to restart.

Step 5: Click OK to save your task.

Use NET commands in a batch file and run it as a scheduled task

This allows you to use two commands to stop and start a service in a batch file, and then run it at a specific time interval or trigger. To use this solution, follow these steps:

Step 1: Open Notepad and type the following commands: NET stop and NET start . Replace with the name of the service that you want to restart.

Step 2: Save your file as a .bat file in a location of your choice.

Step 3: Follow steps 1-3 from previous olution to create a scheduled task that runs your batch file as an action.

Use third-party software that monitors and restarts services automatically

There are many third-party automation tools available that can be used to automate restart services tasks. These tools typically offer more features and flexibility than Task Scheduler, but they may also be more expensive.

This allows you to use a graphical interface or a web console to configure various options for managing services, such as dependencies, alerts, reports, logs, etc. Some examples of such software are Service Protector, Service Hawk, or ServiceKeeper. To use this solution, follow these steps:

Step 1: Download and install one of the software products from their websites.

Step 2: Launch the software and add the service that you want to monitor and restart.

Step 3: Configure the settings for your service according to your preferences and needs.

Step 4: Save your changes and start monitoring your service.

Use a monitoring tool, such as Nagios

Detect and alert you when a service is down or malfunctioning, and can also execute commands or scripts to restart the service automatically. To configure this solution, you need to:

Step 1: Install and run Nagios on a server that can communicate with the server that runs the service you want to restart.

Step 2: Configure Nagios to monitor the status and performance of the service, using plugins or custom scripts.

Step 3: Configure Nagios to send notifications and alerts when the service is down or degraded, using email, SMS, or other methods.

Step 4: Configure Nagios to execute commands or scripts to restart the service when an alert is triggered, using event handlers or custom scripts.

Step 5: Test and verify that Nagios is working properly and can restart the service as expected.

Use a cloud-based automation service, such as AWS Lambda

There are also a number of cloud-based automation services that can be used to automate restart services tasks. These services are typically more expensive than third-party automation tools, but they offer the advantage of being hosted in the cloud, which makes them more scalable and reliable.

Use a cloud-based service, such as AWS Lambda, that can run code or scripts in response to events or triggers, such as time, API calls, or other services. To configure this solution, you need to:

Step 1: Create an AWS account and access the AWS Lambda console.

Step 2: Create a new Lambda function and give it a name and description.

Step 3: Choose a runtime environment and write or upload your code or script that can restart the service, using any supported programming language.

Step 4: Configure the function’s settings, such as memory, timeout, role, etc.

Step 5: Configure the function’s triggers, such as CloudWatch Events, API Gateway, SNS, etc., that can invoke the function at specified times or events.

Step 6: Test and deploy the function.

Use a web-based automation platform, such as Zapier

Connect and integrate various apps and services, and can perform actions based on rules or workflows. To configure this solution, you need to:

Step 1: Create a Zapier account and access the Zapier dashboard.

Step 2: Create a new Zap and give it a name and description.

Step 3: Choose a trigger app or service that can start the workflow, such as Google Calendar, Gmail, Slack, etc., and configure its settings and options.

Step 4: Choose an action app or service that can perform the task of restarting the service, such as SSH, PowerShell, Webhooks, etc., and configure its settings and options.

Step 5: Test and turn on the Zap.

Use a configuration management tool, such as Ansible

Automate and orchestrate various tasks and operations on multiple servers or devices. To configure this solution, you need to:

Step 1: Install and run Ansible on a control node that can communicate with the server that runs the service you want to restart.

Step 2: Create an inventory file that lists the hosts or groups of hosts that you want to manage with Ansible.

Step 3: Create a playbook file that defines the tasks or roles that you want to execute on the hosts, such as restarting the service using modules or commands.

Step 4: Run the playbook file using ansible-playbook command on the control node.

Docker and Container Orchestration (e.g., Kubernetes)

Utilizing containers and orchestration platforms like Kubernetes can help automate service restarts and ensure high availability.

Step 1: Containerize Services: Package the services into Docker containers.

Step 2: Create Docker Compose/Kubernetes Configuration: Define the service containers, their dependencies, and restart policies.

Step 3: Deploy Services: Deploy the services using Docker Compose or Kubernetes.

Step 4: Health Checks: Configure health checks to monitor the services and trigger restarts if needed.

Step 5: Auto-Recovery: Leverage orchestration tools to automatically recover failed containers.

Use a scripting language

You can also use a scripting language, such as PowerShell or Python, to automate restart services tasks. Scripting languages offer the most flexibility and control, but they also require the most technical expertise.

To automate restart services tasks using a scripting language, you will need to write a script that will start the service, stop the service, and then start the service again.

Use Group Policy

Use Group Policy to configure service recovery options that specify what actions to take when a service fails or stops unexpectedly. This way, you can automatically restart the service after a certain amount of time or trigger another action, such as running a program or sending an email notification. To configure this solution, you need to open the Group Policy Management Console and edit the policy that applies to the computers where the service is running. Then, you need to navigate to Computer Configuration > Policies > Windows Settings > Security Settings > System Services and select the service that you want to configure. In the properties window, you need to click on the Recovery tab and choose the actions and settings for each failure scenario.

Use Windows Management Instrumentation (WMI)

Use Windows Management Instrumentation (WMI) to create event filters and consumers that monitor the status of a service and execute a script or command when a change occurs. This way, you can react to any event that affects the service, such as start, stop, pause, resume, or failure. To configure this solution, you need to use the WMI Tools or the WMI cmdlets in PowerShell to create an event filter that queries the Win32_Service class for the properties and values that indicate the status of the service. Then, you need to create an event consumer that specifies what action to take when the filter is triggered, such as running a script or command that restarts the service. Finally, you need to create a binding that associates the filter and the consumer.

Use Windows Service Control Manager (SCM)

Use Windows Service Control Manager (SCM) to create dependencies between services that require each other to function properly. This way, you can ensure that when one service starts or stops, the dependent service also starts or stops accordingly. To configure this solution, you need to use the Services GUI or the SC command-line tool to modify the registry value of the DependOnService entry under the service key in HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services. You need to add or remove the names of the services that depend on the service that you want to configure.

Use third-party tools or applications

Use third-party tools or applications that provide more features and flexibility for managing and automating service restart tasks. For example, you can use Service Protector from Core Technologies Consulting, which is a software that monitors and restarts any Windows service if it crashes, hangs, or stops responding. To configure this solution, you need to install and run the Service Protector application and add the service that you want to protect and restart. Then, you need to adjust the settings and options according to your preferences and requirements.

Use a combination of the above methods

You can also use a combination of the above methods to automate restart services tasks. For example, you could use Task Scheduler to run a script that restarts a service.

The best solution for automating restart services tasks will depend on the specific needs of your organization. If you have a small number of services to restart, then Task Scheduler may be sufficient. If you have a large number of services to restart or if you need more flexibility, then you may want to consider using a third-party automation tool or a cloud-based automation service.

3. Reboot endpoints

Regular reboots are one of the easiest steps end-users can take to minimize IT issues, improve device efficiency, and ensure device health. Convincing end-users of the value of regular reboots by itself is a challenge. Actually getting end-users to regularly reboot their device is almost impossible. Avoid relying on end users or taking time to manually restart devices with script automations.

Here are possible solutions for how to automate reboot endpoints task in order to save time and effort of IT team. Please note that these solutions may have different advantages and disadvantages depending on your specific needs and preferences.

Use Microsoft Endpoint Manager to schedule a reboot via custom OMA-URI setting

This solution allows you to configure a one-time or recurring reboot for your Windows 10 devices using the Reboot CSP. You can specify the exact date and time for the reboot in UTC format and assign the setting to the device or user group of your choice. The device will display a pop-up notification at the scheduled time and will reboot after 60 seconds. To use this solution, you need to follow these steps:

Step 1: Go to endpoint.microsoft.com and sign in with your credentials.

Step 2: Navigate to Device configuration -> Profiles -> Create profile > Add.

Step 3: Enter a name and description for the profile and select Windows 10 and later as the platform and Custom as the profile type.

Step 4: Click Settings -> Add and enter the following information:

• Name: Reboot Schedule
• Description: Schedule a reboot for the device
• OMA-URI: ./Vendor/MSFT/Reboot/Schedule/Single (for one-time reboot) or ./Vendor/MSFT/Reboot/Schedule/Daily (for recurring reboot)
• Data type: String
• Value: The date and time for the reboot in ISO8601 format, such as 2023-08-09T17:00:00Z

Step 5: Click OK and then Next.

Step 6: Assign the profile to the device or user group that you want to reboot and click Next.

Step 7: Review the settings and click Create.

Use PowerShell script and scheduled task to trigger a reboot

This solution allows you to create a PowerShell script that can perform various checks and actions before initiating a reboot, such as verifying the device status, sending an email notification, or displaying a custom message. You can then use the Task Scheduler on the device or the Intune Management Extension to create a scheduled task that runs the script at a specified time or interval. To use this solution, you need to follow these steps:

Step 1: Create a PowerShell script that contains the logic for rebooting the device, such as this example:

  # Check if device is online
  $ping = Test-Connection -ComputerName $env:COMPUTERNAME -Count 1 -Quiet
  if ($ping) {
      # Send an email notification
      $mailParams = @{
          To = "[email protected]"
          From = "[email protected]"
          Subject = "Rebooting device $env:COMPUTERNAME"
          Body = "This device will reboot in 5 minutes."
          SmtpServer = "smtp.example.com"
      }
      Send-MailMessage @mailParams
      # Display a custom message
      $message = "This device will reboot in 5 minutes. Please save your work and close any applications."
      $wshell = New-Object -ComObject Wscript.Shell
      $wshell.Popup($message,300,"Reboot Notification",0x0)
      # Wait for 5 minutes
      Start-Sleep -Seconds 300
      # Initiate a reboot
      Restart-Computer -Force
  }

Step 2: Save the script as a .ps1 file and copy it to a location on the device or upload it to a cloud storage service.

Step 3: Create a scheduled task that runs the script at a desired time or interval, either by using the Task Scheduler GUI on the device or by using the Intune Management Extension to deploy the task via Intune.

Use a cloud-based service, such as AWS Systems Manager

Allows you to manage and automate various tasks and operations on multiple endpoints in the cloud or on-premises. To configure this solution, you need to:

Step 1: Create an AWS account and access the AWS Systems Manager console.

Step 2: Install and configure the AWS Systems Manager Agent on the endpoints that you want to reboot, and register them with your AWS account.

Step 3: Create a document or a run command in AWS Systems Manager that defines the reboot action, using the AWS-RunPowerShellScript document or other methods.

Step 4: Execute the document or the run command on the endpoints, either manually or automatically.

Use Action1 cloud-based platform to restart endpoints remotely

This solution allows you to use a web-based interface to manage and monitor your endpoints from anywhere. You can select one or more endpoints from your inventory and initiate a remote reboot with a single click. You can also schedule a recurring reboot for your endpoints using the built-in scheduler. To use this solution, you need to follow these steps:

Step 1: Sign up for a free trial of Action1 at action1.com and download the Action1 agent on your endpoints.

Step 2: Log in to your Action1 account and navigate to the Endpoints page.

Step 3: Locate one or several endpoints you want to restart and select the Actions icon next to the endpoint name and specify Reboot. Or simply select the Reboot button on top of the endpoints list.

Step 4: To schedule a recurring reboot, select Schedule from the Actions menu and configure the frequency, start date, end date, and time zone for the reboot.

Use PDQ Deploy software to deploy a reboot package to your endpoints

This solution allows you to use a third-party software that can deploy various packages, scripts, commands, or files to your endpoints. You can create a custom package that contains a reboot command and deploy it to your target endpoints at a specified time or interval. You can also use the built-in reboot package that comes with the software. To use this solution, you need to follow these steps:

Step 1: Download and install PDQ Deploy on your computer and configure the required settings, such as credentials, targets, and preferences.

Step 2: Create a new package or use the existing reboot package and edit the properties, such as name, description, conditions, and options.

Step 3: Add a reboot step to the package and specify the parameters, such as timeout, message, and force close applications.

Step 4: Save the package and deploy it to your target endpoints manually or schedule it to run at a desired time or interval.

Use Group Policy to configure a reboot policy for your endpoints

This solution allows you to use the built-in Group Policy feature of Windows to apply a reboot policy to your endpoints that are joined to a domain. You can create a new policy or edit an existing policy that contains a setting that forces a reboot at a specified time or interval. You can also configure other settings, such as displaying a warning message, allowing users to postpone the reboot, or logging the reboot events. To use this solution, you need to follow these steps:

Step 1: Log in to your domain controller and open the Group Policy Management Console.

Step 2: Create a new policy or edit an existing policy that applies to your target endpoints and link it to the appropriate organizational unit.

Step 3: Navigate to Computer Configuration -> Policies -> Administrative Templates -> Windows Components -> Windows Update.

Step 4: Enable the setting Always automatically restart at the scheduled time and specify the time for the reboot in minutes after installing updates.

Step 5: Optionally, configure other settings, such as No auto-restart with logged on users for scheduled automatic updates installations, Re-prompt for restart with scheduled installations, or Delay Restart for scheduled installations.

Use a network management tool, such as SolarWinds Network Performance Monitor

Allows you to monitor and troubleshoot various issues and events on multiple endpoints in a network. To configure this solution, you need to:

Step 1: Install and run SolarWinds Network Performance Monitor on a server that can communicate with the endpoints that you want to reboot.

Step 2: Add and discover the endpoints in SolarWinds Network Performance Monitor, and configure their properties and credentials.

Step 3: Create an alert in SolarWinds Network Performance Monitor that triggers when a certain condition or threshold is met, such as high CPU usage, low disk space, etc.

Step 4: Configure an action for the alert that performs the reboot action, using the Reboot Server action or other methods.

Use a remote management tool, such as TeamViewer

Allows you to access and control multiple endpoints from a central console. To configure this solution, you need to:

Step 1: Install and run TeamViewer on the endpoints that you want to reboot, and assign them to your TeamViewer account.

Step 2: Install and run TeamViewer on the device that you want to use as the central console, and log in to your TeamViewer account.

Step 3: On the console, select the endpoints that you want to reboot, and click on the Remote Reboot option.

Step 4: Confirm the reboot action, and wait for the endpoints to restart and reconnect.

Endpoint Management Platforms (e.g., SCCM, Intune)

Utilizing endpoint management platforms allows you to centrally schedule and automate reboot tasks across a fleet of devices.

Step 1: Configure Endpoint Management Platform: Set up platforms like System Center Configuration Manager (SCCM) or Microsoft Intune.

Step 2: Create Reboot Task: Create a deployment task to trigger a reboot on targeted endpoints.

Step 3: Schedule Task: Configure the task to run on a specific schedule or event trigger.

Step 4: Target Devices: Select the devices or device groups for the reboot task.

Step 5: Monitoring: Monitor the task execution and verify successful reboots.

Custom API and Script Integration

This approach involves developing a custom API and script integration to initiate reboot tasks.

Step 1: Develop API: Create a custom API that accepts requests to reboot specific endpoints.

Step 2: Authentication: Implement secure authentication mechanisms for API access.

Step 3: Develop Script: Create a script that communicates with the API to trigger the reboot tasks.

Step 4: Script Execution: Run the script from a central machine or automated scheduler.

Step 5: Logging and Notifications: Implement logging and notifications to track successful reboots and any failures.

Using Windows Management Instrumentation (WMI)

WMI is a framework that provides access to information and actions on Windows systems, including rebooting endpoints. To use this solution, you need to create a WMI script or query that invokes the Win32_OperatingSystem class and its methods, such as Reboot or Shutdown. You also need to run the script or query on the endpoints or a central server using tools such as WMIC or PowerShell.

Using Remote Desktop Services (RDS)

RDS is a service that allows you to access and control remote computers, including rebooting endpoints. To use this solution, you need to enable RDS on the endpoints and configure the permissions and settings for remote access. You also need to use tools such as Remote Desktop Connection or Remote Desktop Manager to connect to the endpoints and reboot them manually or using scripts.

Using third-party software

There are many third-party software products that can help you automate reboot endpoints task, such as PDQ Deploy, SolarWinds Patch Manager, or ManageEngine Desktop Central. To use this solution, you need to install and configure the software on the endpoints or a central server and create a deployment package or policy that contains the reboot action. You also need to schedule or execute the deployment using the software interface or command line.

Choose the solution that aligns with your organization’s infrastructure, tools, and security requirements. Always test automation processes in a controlled environment before implementing them on production systems to ensure reliability and avoid unintended disruptions.

4. Protect business data

Backup products can be overly complex, difficult to roll out, and unreliable. The cost and complexity can make it difficult to provide adequate data protection to every end user. Solution includes an integrated cloud-based backup software that automatically deploys to solution-managed endpoints. File backup and restore is fast and easy. Through our self-service IT portal, users can restore their own files, saving your team time.