Use the script below and be sure to check the option to run the script interactively and as the user.
At the “Specify process mode” screen select “On trigger” and choose “Logon” from the drop-down, then click “Next”.
Lastly, apply the policy, and test with a new user logon, if all goes well you will see the screen below after a successful 1st logon.