Hi All,
Our domain controller holds 2500 Users and all users have "password never expires" flag. Now our management team asked to set the GPO and implement the password policy. Before i implement the password policy GPO, i disabled the "password never expires" flag for all my domain users by using the below query.
dsquery user “OU=OU-Name,DC=Microsoft,DC=Com” | dsmod user -pwdneverexpires no
aferthat i linked the GPO which is already created with the below settings,
- maximum password age:45 days
- minimum password age:1 days
- Password length: 8 Characters
- Password must meet the complexitiy requirements: Enabled
- Interactive Logon: prompt user to change the password before expiration : 10 days
when i linked the policy, all user's password expired immediately. I am very shocked and revert the changes immediately by enabling the "password never expires" flag again. kindly suggest me why this is happen? and also i would like to apply the same password policy again without any password expiry issue.
Dhakshinamoorthy Balasubramanian
