Hi,
I have configured a password policy on the domain level for some months back, but it does not seem to work.
We have linked the following out at domain level, and under Security Filtering we have Authenticated Users (have also tried to just add my username). The gpo is enabled, and the following is configured under computer configuration
Account Policies/Password Policy
Policy Setting
Maximum password age 90 days
Minimum password age 30 days
Account Policies/Account Lockout Policy
Policy Setting
Account lockout duration 30 minutes
Account lockout threshold 10 invalid logon attempts
Reset account lockout counter after 30 minutes
Interactive Logon
Policy Setting
Interactive logon: Prompt user to change password before expiration 10 days
When i check with my user (gpresult) i can see that the policy is filtered out, here i have rdp to the domain controller
The following GPOs were not applied because they were filtered out
-------------------------------------------------------------------
Default Domain Policy
Filtering: Not Applied (Empty)
User disable access to EXE file zero
Filtering: Denied (Security)
Local Group Policy
Filtering: Not Applied (Empty)
Computer Terminal Server Rules
Filtering: Disabled (GPO)
GPC PASSWORD CHANGE 90 DAYS
Filtering: Not Applied (Empty)
(Not sure why the default domain policy and local group policy is also there?)
I have checked under //domain.local/..../GPO that the gpo is created and able to read.
Any other suggestions ?
/Regards
Ole
/Regards Andreas