We help IT Professionals succeed at work.

Issue with applying password policy to default domain policy

144 Views
1 Endorsement
Last Modified: 2018-12-14
Quick query on a new password policy for a customer 70 users, only 10 have been prompted for password change

This is at applied at default domain policy and domain level (environment is small so default policy has been edited)

Any best way to change password age policy in powershell, gpresult, etc just looking to get this sorted

Appreciate any best troubleshooting steps to look at this
Comment
Watch Question

CERTIFIED EXPERT
Most Valuable Expert 2019
Most Valuable Expert 2018

Commented:
For the default password policy to work, the GPO defining it has ...
* to be linked to the Domain Root
* to apply to the Domain Controllers (so no blocked inheritance for the Domain Controllers OU!)
You need to look at gpresult or a GPMC report for the Domain Controllers, not for the clients.

Note: small or not, best practices are the same: you should leave the default domain policy alone and create your own GPOs. Always.

If you're looking into more granular settings, you need Fine-Grained Password Policies:
Step-by-Step: Enabling and Using Fine-Grained Password Policies in AD
https://blogs.technet.microsoft.com/canitpro/2013/05/29/step-by-step-enabling-and-using-fine-grained-password-policies-in-ad/
MaheshArchitect
CERTIFIED EXPERT
Distinguished Expert 2019

Commented:
does your query is to force all users to change there password?

Author

Commented:
Thanks so I should just run a gpmc report on the domain controller and that will tell which users the policy is being applied to?
CERTIFIED EXPERT
Most Valuable Expert 2019
Most Valuable Expert 2018
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION

Author

Commented:
Thanks will check that out

Gain unlimited access to on-demand training courses with an Experts Exchange subscription.

Get Access
Why Experts Exchange?

Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.

Jim Murphy
Programmer at Smart IT Solutions

When asked, what has been your best career decision?

Deciding to stick with EE.

Mohamed Asif
Technical Department Head

Being involved with EE helped me to grow personally and professionally.

Carl Webster
CTP, Sr Infrastructure Consultant
Empower Your Career
Did You Know?

We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE

Ask ANY Question

Connect with Certified Experts to gain insight and support on specific technology challenges including:

  • Troubleshooting
  • Research
  • Professional Opinions