Solved

AD password expiration warnings are gone

Posted on 2014-03-25
7
205 Views
Last Modified: 2014-03-28
We changed, our password policy to change password every 60 days.
But the users are not getting the pop-up to let us know a few days ahead to change the PW.

Some users get the pop-up and some don't.
I noticed in the 'default policy' on the DC, that:  Interactive Login:  prompt user to change PW before expiration'  is not enabled.

Does that have to be enabled, and why are some users getting the pop-up and others are not?

thanks

We have Server 2003 DC's.
0
Comment
Question by:techgenious
  • 3
  • 3
7 Comments
 
LVL 13

Expert Comment

by:Santosh Gupta
ID: 39953973
please run the RSOP.MSC and see if policy is applying to users.
0
 
LVL 3

Expert Comment

by:mlsbraves
ID: 39953986
It may be because some of your users don't log off. The prompt would appear when they login so if they never log off then they may never see the warning.

See:
http://social.technet.microsoft.com/Forums/windowsserver/en-US/06cfc1d3-12ce-4d8d-a6d3-911d1e6586f4/prompt-user-to-change-password-before-expiration-and-its-settings?forum=winserverGP

Also, have you manually ran a group policy update on the users computer?

gpupdate /force
0
 

Author Comment

by:techgenious
ID: 39954201
I ran RSOP.msc and under 'Source GPO' it is blank meaning this is not set at the DC, default   domain Policy.

the user has logged off and logged on.   Still no message.
I also check:
-- Default Domain Controller Security Settings [blank]
-- Domain Security Policy [blank]

The above two on the DC.

Could it be it is set on the users computers:  Local Policies > security options?
0
Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

 
LVL 13

Expert Comment

by:Santosh Gupta
ID: 39954250
what do you mean by blank ?? seems policy is not set or reset to default.

pls expand the "Domain Security Policy" and verify these policies are there. http://support.gfi.com/manuals/en/lanscan7/lanscan7manual-1-85.html

Also check
 Computer Configuration\Windows Settings\Local Policies\Security Options under Interactive Logon: Prompt user to change password before expiration.
is configured.
0
 

Author Comment

by:techgenious
ID: 39954281
This is 2003 DC's, picture does not appear the same.

Domain
0
 
LVL 13

Accepted Solution

by:
Santosh Gupta earned 210 total points
ID: 39954358
Strange !!!

Do you have the GPMC console installed, if yes then check from their.

run DCDIAG /V and see the erros.
0
 

Author Comment

by:techgenious
ID: 39954922
Okay I will check it out, remember this is server 2003 DC's.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The HP utility "HP Lights-Out Online Configuration Utility for Windows Server 2003/2008" could be of great use when it comes to remotely configure a HP servers ILO WITHOUT rebooting the server. We would only need to create and run scripts using thi…
Learn about cloud computing and its benefits for small business owners.
This is used to tweak the memory usage for your computer, it is used for servers more so than workstations but just be careful editing registry settings as it may cause irreversible results. I hold no responsibility for anything you do to the regist…
With the power of JIRA, there's an unlimited number of ways you can customize it, use it and benefit from it. With that in mind, there's bound to be things that I wasn't able to cover in this course. With this summary we'll look at some places to go…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now