Windows XP password expiration warning does not appear reliably

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

I have a domain policy that forces users to change their passwords every 60
days.
The policy also warns the user starting @ 14 days from when the password is
set to expire.

Two users do not see the password expiration notice reliably every time they
log into our active directory domain. What can be fixed to change this
behavior?

Ken
 
Ken said:
I have a domain policy that forces users to change their passwords
every 60 days.
The policy also warns the user starting @ 14 days from when the
password is set to expire.

Two users do not see the password expiration notice reliably every
time they log into our active directory domain. What can be fixed
to change this behavior?

Have you witnessed this or is it just these two users (out of how many) that
tell you this?
 
Shenan Stanley said:
Have you witnessed this or is it just these two users (out of how many) that
tell you this?

I have not witnessed this - yet. I do not personally have this issue.

My manager who is an engineer is one of the users and has been keeping track
of this anomally. Out of 120 local users (There are remote users, they are
immaterial for this thread), 2 users have have reported this "feature".

Ken
 
Ken said:
I have not witnessed this - yet. I do not personally have this
issue.

My manager who is an engineer is one of the users and has been
keeping track of this anomally. Out of 120 local users (There are
remote users, they are immaterial for this thread), 2 users have
have reported this "feature".

Yes - most of my customers are engineers - many with multiple doctorates.
Most of them have tunnel vision when it comes to their computers. This is
why I asked how many. Seems strange you would have only two out of 120.

If it *is* happening, it could be that certain policies are not applying
correctly to the machine/accounts on the machine.

Have you ran a GPRESULT to confirm what policies are being applied?
 
I have run the GPresult. comapring what policies are applied and where.
Identical to mine when I ran GP result. the only difference was in the RSOP
header.
The "Connected over a slow link?:" value was "Yes" instead of the "No" value
found on my PC. Very confusing....

That is the only difference......
 
This happens as well in our environment, however, the only difference
is that it appears to happen only on remote users that connect via the
VPN. The difference being that these users login to their Windows first
and then authenticate to the domain via a VPN.

I don't know of this is true, but it's my personal (untested) theory
that since these people are already in a Windows session they do not
get the warning when they authenticate to the AD.

Is this by design? Can this warning be setup so that it warns these
users as well? or a separate warning even?

Thanks,

Vince
 
Back
Top