Avatar of Winsoup
Winsoup
 asked on

Password Policy with GPO

If I set up a GPO that says passwords expire every 90 days but in Active Directory I have some accounts set to Never Expire and User Cannot Change Password. Which one is going to take precedence? Do I need to create a deny rule for those to not change or is having it set up this way good?
Active DirectoryWindows Server 2008

Avatar of undefined
Last Comment
Toni Uranjek

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
Toni Uranjek

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
Winsoup

ASKER
Ok, just wanted to make sure the Group Policy wouldn't override those settings.
Toni Uranjek

No, but it will trigger password change for all other user accounts at next log on.
All of life is about relationships, and EE has made a viirtual community a real community. It lifts everyone's boat
William Peck