Solved

Group Policy (GPMC)

Posted on 2006-07-10
8
317 Views
Last Modified: 2010-04-18
I've implemented a TOP LEVEL GPO to apply to the entire domain.  I'm using the new Group Policy Management Console which seems more confusing if you asked me.  It was a lot easier before.

Anyway, the only GPO I've impelmented is the password & lockout policies.  The problem is, SOME PEOPLE are prompted to change their password, while others are not.  

The permissions look fine, so why would some users be prompted to change their password (to make them meet the password complexity requirements) and others are not?
0
Comment
Question by:TheBrothaULuv2H8
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
8 Comments
 
LVL 33

Expert Comment

by:NJComputerNetworks
ID: 17074510
How long have you waited?
0
 
LVL 26

Accepted Solution

by:
Pber earned 500 total points
ID: 17074530
I think in this case, since you've placed the restriction on the password complexity after users have initially created their passwords that only new users and users who's passwords have expired will be prompted.  The existing passwords will remain until the users changes them or is forced to change because the password expired.
0
 
LVL 2

Author Comment

by:TheBrothaULuv2H8
ID: 17074554
NJComputerNetworks:  
I've not waited at all.  I've done a GPUPDATE on the workstations in question to FORCE the new GPO.

PBER:  I think you're on to something.  Can I expire everyone's password?  Is there an easy way?
0
Does Your Cloud Backup Use Blockchain Technology?

Blockchain technology has already revolutionized finance thanks to Bitcoin. Now it's disrupting other areas, including the realm of data protection. Learn how blockchain is now being used to authenticate backup files and keep them safe from hackers.

 
LVL 26

Expert Comment

by:Pber
ID: 17074576
Yes, change your policy you just created to password expires in one day.  Apply, then set it back to the setting you want.
0
 
LVL 2

Author Comment

by:TheBrothaULuv2H8
ID: 17074588
So if I change it to password expire in 1 day.  Then apply.  Then have them log off and log back on, they should be prompted to change password regardless of when they last changed it?  I want to ensure that EVERYONE is forced to change their password so that everyone will create new strong passwords based on the complexity requirements.
0
 
LVL 26

Expert Comment

by:Pber
ID: 17074600
You could also just select all the users in ADUC then right click and properties, then select the account tab and select the Usr much change password at next logon.
0
 
LVL 2

Author Comment

by:TheBrothaULuv2H8
ID: 17074948
Thank you for your assistance. I've accepted your comment
0
 
LVL 26

Expert Comment

by:Pber
ID: 17074990
Not a problem.
0

Featured Post

Salesforce Has Never Been Easier

Improve and reinforce salesforce training & adoption using WalkMe's digital adoption platform. Start saving on costly employee training by creating fast intuitive Walk-Thrus for Salesforce. Claim your Free Account Now

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
In this video, viewers will be given step by step instructions on adjusting mouse, pointer and cursor visibility in Microsoft Windows 10. The video seeks to educate those who are struggling with the new Windows 10 Graphical User Interface. Change Cu…
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question