How can I find the Active Directory users who have the "Cannot Change Password" set by LDAP query?

I want to find out list of users whose account is set to "cannot change password". How can I find by LDAP query? Script is also appreciated. I just need to find out the list.

Solution

This LDAP search filter should find what you have asked:

(&(objectCategory=person)(objectClass=user)(userAccountControl:1.2.840.113556.1.4.803:=64))

This works due to the Bitwise operation Extensible Match Rules provided within Active Directory.

Print Local Group Members in PowerShell 5.0
Get current computer's distinguished name in powershell without using the ActiveDirectory module
Best PowerShell method to get the current Active Directory Site name of the local computer
NetBIOS domain of computer in PowerShell
How to connect to Active Directory via LDAPS in C#?
How do I restrict Apache/SVN access to specific users (LDAP/file-based authentication)?
unresolved external symbol IID_IADs?
Web API 2 Controller isn't picking up IPrincipal.User.Identity.Name
How to get all groups that a user is a member of?
Why am I getting 'System.__ComObject' from my LDAP property?
PowerShell Find Members of Two Specific AD Groups
C# Cannot connect to AD using LDAPS
Get users that are 'memberof' a group
Login failed for user identified principal
How to make requests to local-hosted Azure Devops Server pats API?
Powershell Foreach Get-ADGroupMember on Array of Group Names Not Returning Consistent Results
Execute a RESTAPI request from Powershell using the credentials of the user logged into the windows machine(AD Credential's)
How to automatically update data from outlook to sql using c#, When someone rejects my meeting request it should be updated to my database
Is there a canonical place to store arbitrary key/value pairs in Active Directory
Change Identity Source for Azure Accounts and Groups
Is context need to be closed explicity in LDAP connection pooling
Keycloak adapter not able retrieve current username from windows AD logged-in user
Reset Active Directory password using Python and ldap3
Get user's non-truncated Active Directory groups from command line
Import Data issue from CSV to AD
Renaming Azure Active Directory
Enumerate all users including SIDs
PowerShell Out-GridView result
How to get list of Active Directory group names beginning with "ABC_" in PowerShell?
Web-based LDAP Browser