Confusion over password policy/default domain policy

L

Lee Messenger

I read somewhere that all settings for user account passwords, i.e min
length, expiration date etc, were taken from the default domain policy.

Is this correct ? Seems not.

I created a new policy, linked it to the domain, listed it above the default
domain policy and set the password expiration time to 300 days. When I run
the lockoutstatus utility t says my password will expire in 300 days.

My AD is Win2003 NAtive mode, can anyone give me he definitive answer on
this.
TIA

LM
 
C

Curtis Clay III [MSFT]

Any policy set or linked at the domain level will be treated as a domain
policy. The Default Domain policy is a GPO linked at this level not the
definitive policy for this level.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Using Group Policy to define a Password Policy 1
2003 Group Policy Default Domain Policy 2
policy 2
disabling group policy item doesnt work 1
Group Policy Not Being Applied?? 11
New Domain Password Policy 2
When to use default domain controllers policy? 1
Default Domain Policy -- Password Changes 1

Top