We are running Windows 2008 R2 and I've setup a PW Policy using Shadow Groups. I've added 1 test user to this group and set the PW policy to expire any PW that's older than 1 day. When I log in as this user I'm not prompted to pick a new password, the expiry is not being triggered despite the account having a password that was set 2 months ago.
My DDP has a PW policy set but it's far more lax than this one. No PW expiry at all in it.
Please advise what I should change or if more information is required.