Tom,
Unfortunately No, this is a domain wide setting.
This may help: http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/directory/activedirectory/stepbystep/strngpw.mspx
look under the "Storing Password Policy Information" section.
More than just AD utilize this password policy, as a few LDAP applications do query the policies defined in the domain for setting passwords in their apps which is a nice thing I think. :)
Jef
Date: Thu, 27 Apr 2006 15:31:46 -0400
From: [EMAIL PROTECTED]
To: [email protected]
Subject: [ActiveDir] Exclude one account from password policy
I know account policies are domain wide but if you put a user in an OU and block gpo inheritance, can you make that user have a non-expiring password while everyone esle is subject to the normal AD password policy?I know this is bad security practice but can it be done this way?Thanks
Enter the Windows Live Mail beta sweepstakes Upgrade today
