Results 1 to 4 of 4

Thread: Windows 2008 Domain Password Policy not working

  1. #1
    Join Date
    Apr 2010
    Posts
    80

    Windows 2008 Domain Password Policy not working

    I made the following settings in a Windows 2008 Domain. Computer Configuration -> Policies -> Windows Settings - Settings> Security -> Account Policies. And the Set is:
    Complexity requirements: Disabled
    Password History: 6 Passwords
    Encryption. Disabled
    Maximum Password Age: 32 days
    Password length: 8 characters
    Minimum Password Age: 31 days
    However, do not act the changes. The user must never change a password. It comes a few days earlier, not the message that their password expires. Or I am just a reflection errors has been a while ago where I have defined a password policy.

  2. #2
    Join Date
    Mar 2008
    Posts
    349

    Re: Windows 2008 Domain Password Policy not working

    A similar but GPO is already configured. The option can be found in the security options of the Default Domain Policy Interactive Logon: User before the end of the password to change the Password prompt. The default value is 14 days. Although I set your values for "Minimum and Maximum password age" unfavorable think. Is in your user accidentally runs the option "Password never end" in the properties of the user account enabled??

  3. #3
    Join Date
    Oct 2008
    Posts
    80

    Re: Windows 2008 Domain Password Policy not working

    We would you adjust the minimum and maximum values? This is of course a matter of taste or depending on the company policies. I will always minimum password age to zero, otherwise a user is not before it could change their password set days when needed. What you have for your clients because in use? Can You with "rsop.msc see" whether the Default Domain Policy on the client / user arrives at all? If the Default Domain Policy may inadvertently deactivated or possibly been moved?

  4. #4
    Join Date
    Oct 2008
    Posts
    117

    Re: Windows 2008 Domain Password Policy not working

    I think the explanation is quite simple. You have to after you've changed the password policy, all users to ask to change their password. When password changes then take over the user accounts, the current settings of the DefDomPol. Times you grab a test user and change the password. Then you will see that this user must then change their password every 30 days good.

Similar Threads

  1. Replies: 2
    Last Post: 18-03-2011, 07:47 AM
  2. Replies: 4
    Last Post: 29-12-2010, 10:20 AM
  3. Replies: 1
    Last Post: 05-10-2010, 03:53 AM
  4. Password Policy in Server 2008 AD
    By bjude in forum Active Directory
    Replies: 3
    Last Post: 04-02-2010, 02:30 AM
  5. Replies: 3
    Last Post: 09-07-2009, 05:57 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •