sbumpas
asked on
One-time password change for all users?
I'd like to enforce a one-time password changes for all users in AD. The problem is, we have some users that work once a month and only use OWA. So, if I set passwords to expire in 30 days, then some users may have to change their password twice. If the OWA users don't change before expiration, they are locked out which causes IT major inconvenience.
Does anyone have a strategy they can suggest?
Does anyone have a strategy they can suggest?
What jmoody says is what we do when we migrate a site from one domain to a another
ASKER
The problem with that strategy is OWA users are locked out until their passwords are changed via AD login. Some users rely exclusively on OWA, so we would get dozens of calls to unlock accounts.
perhaps make the owa people a separate group with longer password changes
ASKER
Well this would be a one-time change, so I'm not sure how a longer interval would help?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I would test this on a small set of users first.