I want to ensure that Windows 2000 domain users who are not logging in for 60 days cannot login after that without admin intervention.
In Windows NT 4.0 I used to enable the checkbox "User must login to change password" and had a password expiry of 60 days. So if somebody did not change password in 60 days and came later he could not login. administrator had to reset his expired password In Windows 2000 how do I achieve this ? I donot see this option "User must login to change password" anywhere. I have set the password expiry for 60 days. But somebody who logs in after 90 days also can use his old password , immediately change to new one and login successfully. or is there a better way in Windows 2000 to automatically disable inactive accounts ?
