Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 326
  • Last Modified:

Group Policy (GPMC)

I've implemented a TOP LEVEL GPO to apply to the entire domain.  I'm using the new Group Policy Management Console which seems more confusing if you asked me.  It was a lot easier before.

Anyway, the only GPO I've impelmented is the password & lockout policies.  The problem is, SOME PEOPLE are prompted to change their password, while others are not.  

The permissions look fine, so why would some users be prompted to change their password (to make them meet the password complexity requirements) and others are not?
0
TheBrothaULuv2H8
Asked:
TheBrothaULuv2H8
  • 4
  • 3
1 Solution
 
NJComputerNetworksCommented:
How long have you waited?
0
 
PberSolutions ArchitectCommented:
I think in this case, since you've placed the restriction on the password complexity after users have initially created their passwords that only new users and users who's passwords have expired will be prompted.  The existing passwords will remain until the users changes them or is forced to change because the password expired.
0
 
TheBrothaULuv2H8Author Commented:
NJComputerNetworks:  
I've not waited at all.  I've done a GPUPDATE on the workstations in question to FORCE the new GPO.

PBER:  I think you're on to something.  Can I expire everyone's password?  Is there an easy way?
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
PberSolutions ArchitectCommented:
Yes, change your policy you just created to password expires in one day.  Apply, then set it back to the setting you want.
0
 
TheBrothaULuv2H8Author Commented:
So if I change it to password expire in 1 day.  Then apply.  Then have them log off and log back on, they should be prompted to change password regardless of when they last changed it?  I want to ensure that EVERYONE is forced to change their password so that everyone will create new strong passwords based on the complexity requirements.
0
 
PberSolutions ArchitectCommented:
You could also just select all the users in ADUC then right click and properties, then select the account tab and select the Usr much change password at next logon.
0
 
TheBrothaULuv2H8Author Commented:
Thank you for your assistance. I've accepted your comment
0
 
PberSolutions ArchitectCommented:
Not a problem.
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now