[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1029
  • Last Modified:

Password never expires

We have half of our users who’s passwords where set to never expire during our Win7 roll out. There is an existing policy to force passwords to change every 90 days. Most of these accounts are pass the 90 days from the time the check box for never expire was implemented. If We unchecked the box and with that policy in place what is the expected behavior?

- Will they be locked out immediately and be forced to log off and change their password?
    - What about remote users? Are they locked out until they get back on the domain?
- Or is the 90 days policy reset upon unchecking the box and accounts will not need to change until 90 from now?

What's the best way to avoid having all these user forced to recreate their passwords?
0
SteveKauffman
Asked:
SteveKauffman
  • 2
1 Solution
 
Mike KlineCommented:
They would need to change their password the next time they log off/logon.  They would not be locked out immediately.

I'd make sure to communicate the password policy and give them plenty of advanced notice.

Thanks

Mike
0
 
arifkayacaCommented:
As mkline71 said, if you unchecked the box, your user's account will not locked and remote users exactly same.

I think the best way is set maximum password age to 0 from your password policy settings, in this way your users avoid recreate their passwords.


I hope this will usefull, good luck.
0
 
McKnifeCommented:
Wait. You are only unchecking "password never expires", right? Then nothing would happen for ninety days, the counter starts right then. If they are offline and connect to the domain again a few days later, the countdown would have work manwhilst, because it resides on the domain controller which is never offline.
0
 
McKnifeCommented:
Oops, sorry, I totally blew it ;)
The counter in fact uses the "password last set" attribute, so (again no matter if offline or not) you might have passwords that expire at once.
0

Featured Post

Veeam and MySQL: How to Perform Backup & Recovery

MySQL and the MariaDB variant are among the most used databases in Linux environments, and many critical applications support their data on them. Watch this recorded webinar to find out how Veeam Backup & Replication allows you to get consistent backups of MySQL databases.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now