Can a virus cause passwords to expire on a network?

Posted on 2009-04-03
Last Modified: 2013-12-04
At my job every network login that did not have the "password never expires" checkbox checked in Active Directory was prompted to change passwords.  Individually, user accounts did not have a expiration date.  After looking more in depth I found a group policy for the entire district where passwords have a max age of 45 days.  However, I don't believe that anyone specifically set that.  Can a virus set that policy?  

In addition we had to temporarily shut down our firewall that was incorrectly blocking secure traffic.
Question by:AtypicalIC
  • 3
  • 2

Expert Comment

ID: 24065218
that's a group policy and is intended for maximizing the security, not minimizing it ... don't thing a virus could do that.


Expert Comment

ID: 24065231
btw ... isn't that the default policy for expiration of password?
LVL 49

Accepted Solution

Akhater earned 250 total points
ID: 24065242
the 45 days comes by default
Migrating Your Company's PCs

To keep pace with competitors, businesses must keep employees productive, and that means providing them with the latest technology. This document provides the tips and tricks you need to help you migrate an outdated PC fleet to new desktops, laptops, and tablets.


Author Comment

ID: 24065952
I know it sounds crazy to complain that a security policy is suddenly enforced. However, the odd thing is that  ALL the passwords expired at the same time even though passwords were definitely not assigned at the same time and many were, according to the policy, expired days months and even possibly years ago.

On the opposite side, is there anything that would have prevented the policy from working normally that suddenly allowed it (perhaps the firewall was blocking a network trigger message)?
LVL 49

Expert Comment

ID: 24066198
you are talking about the default domain policy right ? The default settings in 45  days on windows 2003

did you upgrade your domain from 2000 to 2003 or something similar ?

btw why is this question in the exchange section ?

Expert Comment

ID: 24066873
the one and only time I faced a virus changing my password on a server was for my SA password on MSSQL. never for security policy. either way, if your policy remains on 45 days, just leave it as is an d monitor it a bit. see if it actually exparies on 45 days. maybe you have forced the group pilicy forcing the passwords to expire on the same day!!
you could always try setting it to a lower number for easier monitoring

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
Last week, our Skyport webinar on “How to secure your Active Directory” ( provided 218 attendees with a step-by-step guide for identifying Acti…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

786 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question