[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 425
  • Last Modified:

45 days account log in

I setup a company so that users have to reset there password every 45 day's. I found out that you can't set it on an OU, it must be set on the default domain GP. All is working correctly except that I now also have to very 45 day's change the administrators pwd, which is not the problem. The problem is that there are some software like Backupexe 2012 that every time I change the pwd, I will have to go into the program and change it there also.
I want to know if there is a way that I can set it up so that the admin account never has to reset the pwd.

Thank you all
0
noad
Asked:
noad
1 Solution
 
KCTSCommented:
If you have Server 2008 or later you can use fine-grained password policies to apply different policies to different global security groups.

See
http://technet.microsoft.com/en-us/library/cc770842(v=ws.10).aspx
and
http://www.youtube.com/watch?v=AEgoTm1Ofjg
0
 
Rob StoneCommented:
You may also want to read up on 2008R2/2012 Service Accounts
http://technet.microsoft.com/en-us/library/dd548356(v=ws.10).aspx
0
 
noadAuthor Commented:
KCTS

I have tried the fine-grained password policies to apply different policies to different global security groups.
Can't get it working, that's why I'm here asking if maybe there is something eles..
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
KCTSCommented:
There is nothing else.

If you follow the process there is no reason the fine-grained password policy will not work
Make sure your domain is at the 2008 functional level (or later).
0
 
noadAuthor Commented:
Would you know off hand if I can set and account so not to require a reset?
0
 
noadAuthor Commented:
KTCS

I set it all up and it seems to work, however when I tried setting it so that I don't have to reset the password ever, it dose not allow it do due to the pwd setting already in place.

See below

IT Admin PSO
0
 
Pramod UbheCommented:
you just need to select the attached option for the account which needs to be excluded. it will override to GPO.
Capture.JPG
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Tackle projects and never again get stuck behind a technical roadblock.
Join Now