will password policy change in AD force users to update on next login?

On active directory 2003, I will make a password length longer and enable complexity.  

Question: As soon as I do this, will users immediately have to change passwords or will AD wait until the scheduled expiration / password age expires? I have no desire to have 300 people all call me at the same time.
icecom4Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

CorinTackNetwork EngineerCommented:
If all you do is change the requirements for complexity, the users will continue using their existing passwords until the next date they are supposed to change.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Will SzymkowskiSenior Solution ArchitectCommented:
Question: As soon as I do this, will users immediately have to change passwords or will AD wait until the scheduled expiration / password age expires?

If you make thing change users will still be able to use the same password until it expires or they want to change it manually. At that time will the new password policy kick in.

Will.
0
icecom4Author Commented:
Would you be able to point me to any other info suggesting this is true?
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

CorinTackNetwork EngineerCommented:
0
icecom4Author Commented:
is this also true if the maximum password age is NOT DEFINED ?
0
CorinTackNetwork EngineerCommented:
Yeah, in that case the settings would only take effect when the user chose to manually change their password, as it wouldn't expire.
0
Will SzymkowskiSenior Solution ArchitectCommented:
is this also true if the maximum password age is NOT DEFINED ?
Any password policies that you change and put into affect will only take affect on the users the next time the password expires.

You can also reference the link below to confirm that Maximum Password Age does not reset the users password age respectively. It is only when the user passwords expires. Look under the Summary in the link.

https://support.microsoft.com/en-us/kb/236373

Will.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.