Disable password expiration prompt on a Windows 2003 terminal server.

Posted on 2007-08-02
Last Modified: 2013-11-21
I have a Windows 2003 terminal server in a 2003 Active Directory domain.  The terminal server is in it's own OU with a loop back GPO applied to it.  I want to disable notification of upcoming password expiration when logging on to this server.  I do not want to disable password expiration for domain users, I just don't want them to see the "Your password will expire in X days, do you want to change it now?" prompt when they log in to this server.  Basically I don't want people changing their domain password from the terminal server, as this always leads to problems with their local machine not having their new credentials.
Question by:Mondo1287
    LVL 25

    Accepted Solution

    It's in Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options, and the setting is called "Interactive logon: Prompt user to change password before expiration."

    Author Comment

    Thanks.  As far as I can tell, setting this to 0 won't actually disable the prompt. At least it won't prompt them until the day it expires, which may be preferred anyway.  
    LVL 25

    Expert Comment

    Yeah, I wasn't sure whether setting it to zero would disable it or not.  Like you said, at least it won't prompt until the day of expiration.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Highfive Gives IT Their Time Back

    Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

    Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
    ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
    This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
    This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

    759 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    10 Experts available now in Live!

    Get 1:1 Help Now