Service Accounts in Active Directory: Best Practices

Using service accounts managed in active directory to have detailed security control of the technical applications is a best practice. A while ago, one my clients experienced a major issue in their production environment, and this due to an expired technical service account. To anticipate similar behavior in the future and avoid further impact on other applications, we created a small PowerShell script to scan the entire or parts of the active directory for those kind of misconfigured settings.