Managing Active Directory can get complicated. Often, the native tools for managing AD are just not up to the task. The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.
Solved
45 days account log in
Posted on 2013-05-19
I setup a company so that users have to reset there password every 45 day's. I found out that you can't set it on an OU, it must be set on the default domain GP. All is working correctly except that I now also have to very 45 day's change the administrators pwd, which is not the problem. The problem is that there are some software like Backupexe 2012 that every time I change the pwd, I will have to go into the program and change it there also.
I want to know if there is a way that I can set it up so that the admin account never has to reset the pwd.
Thank you all
I want to know if there is a way that I can set it up so that the admin account never has to reset the pwd.
Thank you all
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
-
3
2
- +1
7 Comments
If you have Server 2008 or later you can use fine-grained password policies to apply different policies to different global security groups.
See
http://technet.microsoft.com/en-us/library/cc770842(v=ws.10).aspx
and
http://www.youtube.com/watch?v=AEgoTm1Ofjg
See
http://technet.microsoft.com/en-us/library/cc770842(v=ws.10).aspx
and
http://www.youtube.com/watch?v=AEgoTm1Ofjg
You may also want to read up on 2008R2/2012 Service Accounts
http://technet.microsoft.com/en-us/library/dd548356(v=ws.10).aspx
http://technet.microsoft.com/en-us/library/dd548356(v=ws.10).aspx
KCTS
I have tried the fine-grained password policies to apply different policies to different global security groups.
Can't get it working, that's why I'm here asking if maybe there is something eles..
I have tried the fine-grained password policies to apply different policies to different global security groups.
Can't get it working, that's why I'm here asking if maybe there is something eles..
There is nothing else.
If you follow the process there is no reason the fine-grained password policy will not work
Make sure your domain is at the 2008 functional level (or later).
If you follow the process there is no reason the fine-grained password policy will not work
Make sure your domain is at the 2008 functional level (or later).
KTCS
I set it all up and it seems to work, however when I tried setting it so that I don't have to reset the password ever, it dose not allow it do due to the pwd setting already in place.
See below
I set it all up and it seems to work, however when I tried setting it so that I don't have to reset the password ever, it dose not allow it do due to the pwd setting already in place.
See below
you just need to select the attached option for the account which needs to be excluded. it will override to GPO.
Capture.JPG
Capture.JPG
Featured Post
Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies. Only from Platform Scholar.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
It’s been over a month into 2017, and there is already a sophisticated Gmail phishing email making it rounds. New techniques and tactics, have given hackers a way to authentically impersonate your contacts.How it Works
The attack works by targeti…
- The Email Laundry
- Email Servers
- Cybersecurity
- Email Protocols
- Network Security
- Security, *Phishing
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention.
Multiple USB devices need t…
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten.
The USB drive must be s…
Suggested Courses
Course of the Month8 days, 13 hours left to enroll
721 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.