As in (i'm guessing) most companies we have serveral groups with different policies applied in AD. Now password policies currently set so that only we can change the passwords on a users account. We would like to change this, we would like to set it so that HO (Head Office) users are asked to change their password on a regular basis (say once a month) and other users (mainly External laptop users) are not asked to do this. The problem that I forsee is that these users are not split in these groups they are split into depatmental groups so if you apply it to say an accounts group it would affect everyone in that group and not just the HO users that we want it to.
We would like to be able to do this without doing it by user.
Any help would be much appreciated and if you need anymore information please ask.
Thanks in Advance