Hi,
We have a 2003 based AD with 2008 R2 servers as additional DCs. We applied password complexity policy yesterday for all three domains. Now as per the new policy password length is 8 and before it was only 6. We are looking for a script that will make password expiration of those user passwords do not meet the new complexity requirements. We have a maximum password age of 122 days and we do not wish users to use their weak passwords untill their password expiry. We are also concerned that users with strong password should not get affected. Your response is highly appreciated