Windows Server 2008

My Domain Controller is a Windows Standard without Hyper-V SP2.  I am trying to set up a password polciy through Group Policy.  For some reason or another it is not applying the Group Policy.  I have rebooted the server and force a gpupdate. My environment is a Terminal Server.  I was setting the password polciy in the Default Doman Policy.  The pollicy is set at the domain level and at the OU.  I am not sure if some of the issue is the version of the OS installed.
LVL 1
cmhorvathAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

MBobrekCommented:
You mention that you are not sure if an issue is the OS..... what mix of OS do you have?  Does it apply to one OS and not the other?
Go to the CMD prompt and type GPRESULT /R  (on windows 7, you may not see the Computer applieds - only user).  Better yet, you can go to the root of C: and run GPRESULT /H report.htm (this would dump the results into a file on the root of C: called report.htm.  Or run it from any directory but note what dir you are in.

You need to make sure that the policy is definately being applied to the OU the computer is in.  BUT - if this is a USER policy (password), and you are applying it to an OU where computers reside, you will need to enable "loopback" processing.  

Also confirm you don't have a WMI filter in place that may be setup to filter by say, 32bit/64bit applies.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
X-treemCommented:
set it in the default domain controller policy
defaullt domain applies for member servers/workstations, not for the DC (where AD is located)
0
Neil RussellTechnical Development LeadCommented:
Password policy should be set in the Default Domain Policy and nowhere else. Unless using fine grained policies this is the ONLY policy that will be used, you can NOT have multiple Group policies for password security settings.
0
cmhorvathAuthor Commented:
I will try those suggestions and get back to you.  Also, I am unable to set go in ad users and computers.  Any reason why I do not get that tab.
0
cmhorvathAuthor Commented:
This helped me to figure out what GPO's had not been applying.  The issue was with there was password policy set at the local policy level and through GPO.  Once I changed this the policy set.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Legacy OS

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.