Solved

In DC - user must change password at next logon

Posted on 2012-12-22
3
656 Views
Last Modified: 2012-12-27
Dear All,

Good Day,

When new user accounts are created, we set a temporary password and check the "User must change password at next logon" box on the user account. In this default domain policy, account passwords expire every 30 days or not. if not how to set account passwords expire every 30 days.

Waiting for your reply

Thanks
Kumar
0
Comment
Question by:Ram Kumar Chellam
3 Comments
 
LVL 15

Accepted Solution

by:
achaldave earned 167 total points
ID: 38716033
You need to configure password policy GPO, if you are going to use same policy for all users in domain then you can use default domain policy otherwise you need to create different policies and apply them to OUs.
If you change default domain policy, make sure you set "password never expired" option on service accounts otherwise you need to change service accounts password and reconfigure services every X number of days specified in the policy. When set option "Password never expires" the option overrides the group policy setting applied to account.

http://technet.microsoft.com/en-us/library/cc736605%28WS.10%29.aspx
0
 
LVL 2

Assisted Solution

by:Ganpar
Ganpar earned 167 total points
ID: 38716037
You can check the default domain policy setting on

http://technet.microsoft.com/en-us/library/4695b475-f87e-45c5-93c7-49af2f94215f(v=ws.10)#BKMK_Pwd

You can edit this policy using gpmc tool. If you have windows server 2003 download GPMC -

http://www.microsoft.com/en-us/download/details.aspx?id=21895

Please note you must be a member of "Domain Admin" or "Enterpriese Admin" group
0
 
LVL 39

Assisted Solution

by:footech
footech earned 166 total points
ID: 38716660
Unless your domain functional level is 2008 you can only have one password policy for all users.  If the level is 2008+, then you can utilize fine-grained password policies to apply to different users.
http://blogs.technet.com/b/seanearp/archive/2007/10/06/windows-server-2008-fine-grained-password-policy-walkthrough.aspx
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now