Disabling password expiration

I am running a server 2003 domain,
I do not want there to be expiration on the the users password, (as of right
now there is, and they are getting that it expires in X days).

So I went into domain policy settings on the server, and went to: security
settings\account settings\password policy.

I set it to "undefined" and restarted the serverI also set the , however, it
still says that the password will expire. I tried to set it to "999" but it
still causes the same problems. Password history to undefined, but it still
says 24 passwords whe nyou try to change it.

The users are on the domain, in there own OU

Hello ghu,

If a password should never expire set it to "0" as described in the explanation
of the policy setting.

For the history you have to set it to 0 - 24. JUst using not defined will
not revert the previous setting.

Make sure you edit the right policy. It is a domain group policy - not a
local policy on a server. It "Password Policy" should normally be the
Default Domain Policy - if there are policies with higher precedence
linked to the domain, you'll also have to check those.

Set the value to 0

I set the values to "0". And it still says the passwords will expire.

I ran gpupdate /force on the server, and I restarted one of the workstations.

When you run rsop.msc what value is defined? Where are you applying these
values? PW policies must be applied at domain level, is tgis what you're
doing?

I am setting these sttings on the windows 2003 server which is my only domain
controller.

When I run rsop.msc on a local machine, it says "RSOP data is invalid.
likely cause............" and then by details it says: "Invalid namespace".

Thanks

How is this "And it still says the passwords will expire" said? Check on
the client with gpresult /v if the policy is applied. You have to configure
this setting on domain level policy.

Mr Meinnolf Weber was right, just set it to "0".

As I told you before, you should det the value to "0". The question is if
it's being applied correctly. To the error check this one for similar
behaviors:
http://www.eventid.net/display.asp?e...serenv&phase=1

They are all correct. Set the expiration to 0. If you are having issues please be sure to open up your command prompt and update the group policy on the domain by:

gpupdate /force.

I hope this helps.

What is all correct?

Keep in mind, when responding to a closed post in Techarena, or a post older
than 90 days, the original or last post posted older than 90 days, is
removed from the Microosft public newsgroups, wihch is the source of posts
for Techarena. Many times we see replies to a post in a thread that has been
closed or older than 90 days that look like what you've posted with no
information about the original post, or even able to see the original post.

I think Techarena should post a general message concerning this fact to
alert anyone posting.

[rahnama]

Thanks alot it worked