I've implemented a TOP LEVEL GPO to apply to the entire domain. I'm using the new Group Policy Management Console which seems more confusing if you asked me. It was a lot easier before.
Anyway, the only GPO I've impelmented is the password & lockout policies. The problem is, SOME PEOPLE are prompted to change their password, while others are not.
The permissions look fine, so why would some users be prompted to change their password (to make them meet the password complexity requirements) and others are not?