In my experience the individual account setting overrules the GPO on this. You had grumbling with a 15 minute inactivity setting? I was mandated to implement a 3 minute policy here. We almost had a revolution, but it's funny - 2 years later everyone seems to be used to it.
> -----Original Message----- > From: John Hornbuckle [mailto:[email protected]] > Sent: Wednesday, March 04, 2009 11:32 AM > To: NT System Admin Issues > Subject: RE: Password Policy Change > > One other question about this. > > My understanding is that I can only set one policy for the domain, and it > will apply to everyone (we're not at a 2008 functional level, so I can't > use fine grained password policies). > > If I configure Group Policy to have passwords expire by have the "Password > never expires" option selected for an account, which setting wins? Does > the "Password never expires" option overrule the GPO? > > > > -----Original Message----- > From: John Hornbuckle > Sent: Wednesday, March 04, 2009 10:52 AM > To: 'NT System Admin Issues' > Subject: Password Policy Change > > Right now, our users' passwords don't expire. We're looking at changing > that. > > My question is this... If I decide to enable password expiration, how is > the expiration date calculated for my users? > > Let's say that today I set passwords to expire every 60 days. Will all > current users' passwords expire 60 days from today? Or will all current > users' passwords expire today, if those passwords are 60 days or older? > > > > John Hornbuckle > MIS Department > Taylor County School District > 318 North Clark Street > Perry, FL 32347 > > www.taylor.k12.fl.us > > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ Confidentiality Notice: ---------------------------------- This communication, including any attachments, may contain confidential information and is intended only for the individual or entity to whom it is addressed. Any review, dissemination, or copying of this communication by anyone other than the intended recipient is strictly prohibited. If you are not the intended recipient, please contact the sender by reply email, delete and destroy all copies of the original message. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
