Solved

What is the impact to change the policy Maximum Password Age 60 Days to 0 Day?

Posted on 2014-12-16
6
138 Views
Last Modified: 2014-12-16
Hello everyone,

I need to change temporarily to complete a migration password policy Maximum Password Age 60 Days to 0 days.

What will be the impact on users?

You will be prompted immediately for users to change the password?

I tried to find some official Microsoft document and found nothing about it.

Could someone show me an official documentation on the impact of this change?

Thank you very much.
0
Comment
Question by:lucianolima
6 Comments
 
LVL 24

Assisted Solution

by:Phillip Burton
Phillip Burton earned 250 total points
ID: 40502464
I believe that 0 days means "never expires". In other words, they won't be prompted to change the password, because they don't need to.

See http://technet.microsoft.com/en-gb/library/cc736566%28v=ws.10%29.aspx for more information.
0
 
LVL 7

Expert Comment

by:HaiFai
ID: 40502467
If you set it to 0 password neverexpire so minimum days is 1 max 998

http://technet.microsoft.com/en-us/library/cc736566%28v=ws.10%29.aspx
0
 
LVL 1

Author Comment

by:lucianolima
ID: 40502511
I had also found such documentation, but they are not clear regarding the exchange I need to do.

In theory I agree with you and make much sense this, but as I cannot reproduce this scenario and particularly I have never done this type of change to 0 days I am concerned about the impact this may cause to users.

Has anyone done this in practice?
0
VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

 
LVL 24

Accepted Solution

by:
VB ITS earned 250 total points
ID: 40502516
Yep, I have. Setting it to 0 days just means their passwords will never expire as stated above. They will continue to be able to use their existing password without any issues.
0
 
LVL 1

Author Closing Comment

by:lucianolima
ID: 40502525
Thank you very much All.

I will make the changes in the days and warning everyone about the result.
0
 
LVL 1

Author Comment

by:lucianolima
ID: 40502594
Hello everyone,

I was able to reproduce the changes in a lab environment.

Before you change the Password Policy I ran the command:

net user% USERNAME% / domain

The result was display the expiration date of the account:

Password Expires --> 1/13/2015 10:00:30 PM

Then I changed the Password Policy and execute gpupdate/force in Domain Controller and ran the command again and the result was showing that the password never expires.

Password Expires --> Never
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you migrate a Terminal Server licenses server inside the 2008 server family, you can takte advantage of the build-in migration tool. If you like to migrate an older 2003 Server (and the installed client CALs) to a 2008 R2 server for example, you …
A safe way to clean winsxs folder from your windows server 2008 R2 editions
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question