Re: Group Policy - Maximum Password Age
- From: "Florian Frommherz [MVP]" <florian@xxxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 18 Aug 2008 19:48:18 +0200
Howdie!
Flash3200 wrote:
OK, this is weird.... In Group Policy we have the Default Domain set
to Disabled. However, even though it is set to Disabled it does have
settings in it from when it use to be Enabled. One of the settings is
that the Maximum Password Age is set to 90 Days. Ok, now in the Group
Policy we have set and enabled on the OU for where my user's and
computers reside we have the Maximum Password Age set to 45 Days. Now
this is where it gets weird... even though everything I look at (GP
Modeling, GP Results, etc) says that the Maximum Password Age is set
to 45 Days, it appears that the passwords do not expire until they
reach 90 Days?
Domain Password settings can only be made at the domain level, not at OU level. The settings you linked at the OU will reflect on the local accounts that each machine in the target of the policy has. Have a look at the domain level ... apart from the disabled Default Domain Policy - is there another Group Policy that defines password settings?
cheers,
Florian
--
Microsoft MVP - Group Policy
eMail: prename [at] frickelsoft [dot] net.
blog: http://www.frickelsoft.net/blog.
Maillist (german): http://frickelsoft.net/cms/index.php?page=mailingliste
.
- Follow-Ups:
- Re: Group Policy - Maximum Password Age
- From: Richard Mueller [MVP]
- Re: Group Policy - Maximum Password Age
- References:
- Group Policy - Maximum Password Age
- From: Flash3200
- Group Policy - Maximum Password Age
- Prev by Date: Re: Servers in Sites & Services
- Next by Date: Re: DCDIAG Error
- Previous by thread: Group Policy - Maximum Password Age
- Next by thread: Re: Group Policy - Maximum Password Age
- Index(es):
Relevant Pages
|
