You sort of right. It used to in NT4.0, but not in Windows 2000/3 whatever SP. Microsoft silently changed meaning of the checkbox from "User must change password at next logon" to "Administrator has forced the user to change password at next logon", but has forgotten to change the name. Meaning the checkbox is now set when and only when administrator had set it. If the password expired on it's own, checkbox isn't set anymore. I'm sure you can find some help here how to "write the simplest script on the earth" to get real password expired status. (or take a look at the thread "Password Policy - Challenge....", which is really cool and has the script) Vladimir
________________________________
From: [EMAIL PROTECTED] on behalf of Thommes, Michael M.
Sent: Tue 10/7/2003 1:49 AM
To: Active Directory Mailing List (E-mail)
Subject: [ActiveDir] does password expired toggle "user must change password at next
logon"?
Hi All:
I don't recall ever getting any response from the message below that I sent out
about a month ago. Hopefully, there's no harm in trying again. Thanks!
Mike Thommes
Hi,
When a user's password expires, does it automatically toggle the setting for the
account "User must change password at next logon"? It seems to me it used to do this,
but that is not what we are seeing now. Our DCs are at W2K/SP3 plus post SP3 patches.
Would there be any connection between this observation and the setting "User must
logon to change password"? Thanks for any information!
Mike Thommes
Argonne National Laboratory
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
<<winmail.dat>>
