Windows 2008 R2 ADDS
Inherited setup were previous sysadmin, disabled all pwd security on the domain... also removed from 'Default Domain Policy' .....I am restoring this back to defaults...however a group of users (say Global security group ALL-XYZ) requires a different password policy than the default, these users are spread across several OUs ann sub-OUs
...so i setup a FGPP with ADSI and assigned the group.....but some where I read about Shadow Groups....what are they, how do they apply to FGPP, are they the same as a regular group?
here is what I did to setup the FGPP with ADSI..
Am I missing something...Do I have to link the user OSs? How since this is not done in GPO Manager?? I don't have a test enviornment so want to be sure before I execute