Maximum Password Age

[Jake]

Simple question, I want to implement "Maximum Password
Age" in the Default domain policy. As I've not
implemented this thus far, I was wondering what's going
to happen to users passwords after I make this policy
effective. I plan on making the maximum password age be
30 days.

Will all users be prompted to change their passwords
tomorrow since their passwords are already older than 30
days? Or will they have 30 days from the time I
implement this policy before they need to change their
passwords? I figured someone has already been through
this so I thought I would ask.

Thanks in advance!
Jake

 

[Danny Sanders]

If their password has been in effect for over 30 days they will be asked to
change it the next time they log on.


hth
DDS W 2k MVP MCSE

 

[Jake]

Yes Sir, you are correct. Just tested it with a test
domain. Thanks for the info Danny!

On the test domain (Win2000 AD) I setup the maximum
password age and it did "prompt" me to change the
password. But, I was able to cancel the prompt (say NO)
and continue on. How many times or days can I bypass
chaning the password? I don't see any policy setting
that dictates this.

Once again, thanks for the info!
Jake