Re: PwdLastSet
- From: "Joe Richards [MVP]" <humorexpress@xxxxxxxxxxx>
- Date: Sun, 05 Mar 2006 11:31:53 -0500
This is true for complexity and length rules. Lockout policy and expiration policy apply immediately. So if I have a password of age 200 days and someone slaps a expiration policy of 90 days into place, my account is immediately expired and I will know it the next time I log in or the system attempts to authenticate on my behalf (which happens throughout the day in Windows).
joe
--
Joe Richards Microsoft MVP Windows Server Directory Services
Author of O'Reilly Active Directory Third Edition
www.joeware.net
---O'Reilly Active Directory Third Edition now available---
http://www.joeware.net/win/ad3e.htm
Paul Bergson wrote:
This is news to me. I have been told passwords aren't impacted until they are changed..
- Follow-Ups:
- Re: PwdLastSet
- From: Paul Bergson
- Re: PwdLastSet
- References:
- Re: PwdLastSet
- From: Joe Richards [MVP]
- Re: PwdLastSet
- From: Paul Bergson
- Re: PwdLastSet
- Prev by Date: Changing to 2003 DC
- Next by Date: Re: Local Machine vs. Domain Group Policy
- Previous by thread: Re: PwdLastSet
- Next by thread: Re: PwdLastSet
- Index(es):
Relevant Pages
|
Loading
