• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 31
  • Last Modified:

Apply different password policy on Window 2012R2

Try to block the inheritance on a OU and create a new password policy there. However, the user there doesn't prompt for any password change. Any idea ?

I try to use grained password policy but it doesn't have any option to control when the password be expired. Any workaround solution ?

1 Solution
There is exactly one password policy per domain that you can control using group policy, it has to be linked to the domain root, and it has to apply to the domain controllers. Full stop.
For everything else, you will need fine-grained password policies, and they do allow setting the expiration.
Open the Active Directory Administrative Center (%windir%\system32\dsac.exe), open <Your Domain>\System\Password Settings Container.
Click New, or open an existing one.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell┬« is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now