Re: Password Policy Change

From: Lee (lmessenger_at_nospam.com)
Date: 02/15/04 

Date: Sun, 15 Feb 2004 14:26:58 -0000

Mike,

thanks for the response, this is gonna be an issue when I change it as I
will have about 500 users all needing to change their password at once.

I have about 10 offices, all with an OU each, could I create a new GPO with
the password settings and link this to just one of the OU's and the default
domain controllers policy, so only 1 office at a time gets asked to change ?

Thanks for your help

LM
"Mike Aubert" <mikenews2@2000trainers.com> wrote in message
news:eY9QHe88DHA.2480@TK2MSFTNGP10.phx.gbl...
> The password age is based on the last time the user changed their
password.
> So if someone changed their password 100 days ago, and you implement a
> policy that requires passwords be changed every 60 days, the user would be
> prompted to change their password at the next logon.
>
> ------------------------------------------------------------------
> Mike Aubert
> MCSE, MCSD, MCDBA
> mikenews2@2000trainers.com
>
> Note the "news2" in my email address is temporary and may be changed in
the
> future, remove it to email me at my Permanente address.
> This posting is provided "AS IS" with no warranties, and confers no
rights.
>
>
> "Lee" <lmessenger@nospam.com> wrote in message
> news:O3hLEf78DHA.2316@TK2MSFTNGP09.phx.gbl...
> > hi,
> >
> > We have been in migration mode for the last 6 months, migrating from NT
to
> > AD. Initially I setup a loose password policy, I.e. password expires
in
> > 300 days, so that users don't have to change their passwords and
> > subsequently cannot access stuff in the old domain.
> >
> > Now I want to change the password expiry to 60 days.
> >
> > If a user hasn;t changed their password in 100 days for example, and I
> apply
> > the new policy, will they immediately be forced to change their
password,
> or
> > will the 60 days begin from the time I apply the new password policy ?
> >
> > TIA
> >
> > LM
> >
> >
>
>

Relevant Pages

  • Re: Automatic Updates on Server Turned on & greyed out - yikes!
    ... Microsoft Windows Operating System Group Policy Result tool v2.0 ... GPO: Default Domain Policy ... Computer Setting: 50 ... GPO: Default Domain Controllers Policy ...
    (microsoft.public.windows.server.sbs)
  • Re: Automatic Updates on Server Turned on & greyed out - yikes!
    ... Small Business Server Update Services Client Computers Policy ... GPO: Default Domain Policy ... Computer Setting: 50 ... GPO: Default Domain Controllers Policy ...
    (microsoft.public.windows.server.sbs)
  • Re: group policy question
    ... Group Policy Results ... Small Business Server Client Computeracbfparentadvocates.localAD, ... PolicySettingWinning GPO ... Audit object accessSuccess, FailureDefault Domain Controllers Policy ...
    (microsoft.public.windows.server.sbs)
  • Re: Error trying to copy Default Domain Policy
    ... Ok....but how do I know what most of the settings should be set at? ... and Domain Controllers Policy? ... in multiple policies, changed service StartUp behaviors, blocked ... Default Domain Controllers Policy, I'd go for the work and try to crawl ...
    (microsoft.public.windows.group_policy)
  • Re: Local Policy Does not permit logon interactively ~ Urgent help
    ... there must be a reason why the policy isnt being applied, ... "Jorge Silva" wrote: ... undefined and the logon locally setting has the domain admin group ... the Default Domain Controllers policy. ...
    (microsoft.public.windows.server.active_directory)