none
PSO not applied to users with never expire or can not change password

    Question

  • I want to set this password policy using PSO on a group of users but they just set these to block the policy, is there a policy that will prevent this on the specific group used in the PSO?

    so if I add someone to the group these settings will be disabled.

    Thursday, January 29, 2015 8:02 PM

Answers

All replies

  • can you clearly elaborate on this question, I'm not following your post.
    Thursday, January 29, 2015 8:29 PM
  • I have a PSO applied to a global group.

    Its works fine except for those users who have the settings above. (too many chiefs...)

    How do I over-ride the settings above on members of the global group?

    Thursday, January 29, 2015 8:33 PM
  • i think your going to need FGPP http://blogs.technet.com/b/canitpro/archive/2013/05/30/step-by-step-enabling-and-using-fine-grained-password-policies-in-ad.aspx

    thanks

    Thursday, January 29, 2015 8:41 PM
  • I already have this, some call it PSO.

    Where do you see the settings in the picture above I am referring to in the link you sent me??

    Thursday, January 29, 2015 10:49 PM
  • > How do I over-ride the settings above on members of the global group?
     
    You cannot. The user attributes take precedence.
     

    Martin

    Mal ein GUTES Buch über GPOs lesen?

    NO THEY ARE NOT EVIL, if you know what you are doing: Good or bad GPOs?
    And if IT bothers me - coke bottle design refreshment :))
    Friday, January 30, 2015 7:28 AM