Re: PwdLastSet
- From: "Paul Bergson" <pbergson@xxxxxxxxxx>
- Date: Sun, 5 Mar 2006 12:05:06 -0600
I didn't know that. I thought that a forced expiration was required.
--
Paul Bergson MCT, MCSE, MCSA, CNE, CNA, CCA
http://www.pbbergs.com/
This posting is provided "AS IS" with no warranties, and confers no rights.
"Joe Richards [MVP]" <humorexpress@xxxxxxxxxxx> wrote in message
news:e5dSTJHQGHA.2992@xxxxxxxxxxxxxxxxxxxxxxx
This is true for complexity and length rules. Lockout policy and
expiration policy apply immediately. So if I have a password of age 200
days and someone slaps a expiration policy of 90 days into place, my
account is immediately expired and I will know it the next time I log in
or the system attempts to authenticate on my behalf (which happens
throughout the day in Windows).
joe
--
Joe Richards Microsoft MVP Windows Server Directory Services
Author of O'Reilly Active Directory Third Edition
www.joeware.net
---O'Reilly Active Directory Third Edition now available---
http://www.joeware.net/win/ad3e.htm
Paul Bergson wrote:
This is news to me. I have been told passwords aren't impacted until
they are changed.
.
- Follow-Ups:
- Re: PwdLastSet
- From: Joe Richards [MVP]
- Re: PwdLastSet
- References:
- Re: PwdLastSet
- From: Joe Richards [MVP]
- Re: PwdLastSet
- From: Paul Bergson
- Re: PwdLastSet
- From: Joe Richards [MVP]
- Re: PwdLastSet
- Prev by Date: Re: Local Machine vs. Domain Group Policy
- Next by Date: Re: Changing to 2003 DC
- Previous by thread: Re: PwdLastSet
- Next by thread: Re: PwdLastSet
- Index(es):
Relevant Pages
|
