Adaxes

Fine Grained Password policy not reflected in ADUC

0 votes

I have created a fine grained password policy in Adaxes with expiry dates in 100 days. It appears to work. However ADUC still show the accounts expirying in 42 days as dictated by default domain policy.

Should ADUC reflect the policy as enforced by Adaxes or only reflect the domain policy even if it no longer applies to the user?

by (280 points)

1 Answer

0 votes
by (216k points)

Hello,

As far as we know, by default, in ADUC, you cannot view when a user's password is to expire. This is possible only using add-ins to ADUC, such as the Additional Account Info tab or similar. If this is the case, probably the add-in to ADUC is not working properly.

0

You are right I am using the the addional inof tab which may not be supported.

So ok, how do i see the password expiry date in Adaxes? I want to prove the fine grained password policy worked.

by (280 points)
0

One additional thing. I have a scheduled task that notifies users when their pw will expiry. However that Adaxes tool seem to look at the domain policy and not the Fine Grained policy.

by (280 points)
0

Hello,

So ok, how do i see the password expiry date in Adaxes? I want to prove the fine grained password policy worked.

Take a look at step 6 of the Manage Fine-Grained Password Policies Tutorial.

One additional thing. I have a scheduled task that notifies users when their pw will expiry. However that Adaxes tool seem to look at the domain policy and not the Fine Grained policy.

The Password Expiration Notifier builtin Scheduled Task takes Fine-Grained Policies into account. We have re-tested this in our testing environment today, and everything works OK.
If this does not work as desired in your environment, then we need to have a closer look at your Password Policies.

by (216k points)
0

Yes it seems to be OK , thank-you for your help.

by (280 points)

Related questions

0 votes
1 answer
Fine Grained Password Policy not in Adaxes Web

I did some testing around Fine Grained Paswword Policy and Adaxes. See my previous post. It seems to be OK. HOWEVER If I use the Adaxes web portal to view a user's ... the default domain policy and not the true one as of the FGPP as implemented by Adaxes.

asked Dec 18, 2012 by It_helpdesk (280 points)
0 votes
1 answer
password policy is not applicable to OU

an OU is created in the Active Directory. but when I'm trying to select that in "password policy". the Adaxes is not allow for me to choose OU. only AD users and groups can be selected. is there any way to choose OU?

asked Sep 23, 2020 by justinh (60 points)
0 votes
1 answer
Making changes in SelfService Password Policy in production

Hi everyone, How are you doing? I need to know how do I to make changes in selfservice password policy. Actually my policy is in production and all users have to ... the policy, keeping 2 responses from 4 questions already made? Thanks for all. Regards, Lopes

asked Nov 16, 2015 by ClownisThiii (100 points)
0 votes
1 answer
Changes to Exchange Online Mailbox not reflected on Web Interface.

I'm testing making changes to a mailbox that is synced between AD and Office365. During changes updates are not reflected back. I'm prompted that the replication with AD Connect has ... in the web interface. If I go to the console I can see the change.

asked Aug 6, 2020 by ComputerHabit (790 points)
0 votes
1 answer
Change text to reflect actual password policy

We use a third party tool to enforce stronger password policy than what AD allows. Is there a way to change the text on password change windows to reflect this?

asked Jan 11, 2021 by mark.it.admin (2.3k points)
3,350 questions
3,051 answers
7,791 comments
545,068 users