Group Policy (GPMC)

I've implemented a TOP LEVEL GPO to apply to the entire domain.  I'm using the new Group Policy Management Console which seems more confusing if you asked me.  It was a lot easier before.

Anyway, the only GPO I've impelmented is the password & lockout policies.  The problem is, SOME PEOPLE are prompted to change their password, while others are not.  

The permissions look fine, so why would some users be prompted to change their password (to make them meet the password complexity requirements) and others are not?
LVL 2
TheBrothaULuv2H8Asked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
PberConnect With a Mentor Solutions ArchitectCommented:
I think in this case, since you've placed the restriction on the password complexity after users have initially created their passwords that only new users and users who's passwords have expired will be prompted.  The existing passwords will remain until the users changes them or is forced to change because the password expired.
0
 
NJComputerNetworksCommented:
How long have you waited?
0
 
TheBrothaULuv2H8Author Commented:
NJComputerNetworks:  
I've not waited at all.  I've done a GPUPDATE on the workstations in question to FORCE the new GPO.

PBER:  I think you're on to something.  Can I expire everyone's password?  Is there an easy way?
0
Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

 
PberSolutions ArchitectCommented:
Yes, change your policy you just created to password expires in one day.  Apply, then set it back to the setting you want.
0
 
TheBrothaULuv2H8Author Commented:
So if I change it to password expire in 1 day.  Then apply.  Then have them log off and log back on, they should be prompted to change password regardless of when they last changed it?  I want to ensure that EVERYONE is forced to change their password so that everyone will create new strong passwords based on the complexity requirements.
0
 
PberSolutions ArchitectCommented:
You could also just select all the users in ADUC then right click and properties, then select the account tab and select the Usr much change password at next logon.
0
 
TheBrothaULuv2H8Author Commented:
Thank you for your assistance. I've accepted your comment
0
 
PberSolutions ArchitectCommented:
Not a problem.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.