I have recently changed a few things in my active directory, in order to shore up some basic security. We have one domain, running Windows 2003 severs. Everything is pretty basic with the domain. I have made three changes in past few days. They are:
1. Changed password complexity to 6 chars, capital, numeral..etc
2. Changed account lockout to duration of 3 unsuccessful attemps
3. Changed password expiration to 30 days
After changing these settings in AD (globally), it seems that when people change their passwords (after being prompted when they login) their accounts get locked out. This has happened to every person who has changed their password since the changes were implemented.
Does anybody have any ideas as to why this might be happening?
Thanks in advance for your help.