Hi, We have Password policy defined in our DCs that enforce long and complex passwords (e,g, 12 characters min with combinations of lower/upper cases plus number, etc). This works well for office base staff. However we notice that our home workers are able
to reset to short and simple passwords.
We found that if home workers are logged in VPN then when they changed their passwords (expire) they need to specify a lengthy and complex one. But if they changed their passwords outside of VPN, they are able to set short & simple passwords.
However the "password duration/expiration" has been successfully pushed regardless they are in VPN or not.
Is there a way to enforce our GPO over any local policy (even users not in VPN)? We don't want to change LP for hundred of users as very time consuming.
Thanks in advance for any help.
