0 votes

I have created a fine grained password policy in Adaxes with expiry dates in 100 days. It appears to work. However ADUC still show the accounts expirying in 42 days as dictated by default domain policy.

Should ADUC reflect the policy as enforced by Adaxes or only reflect the domain policy even if it no longer applies to the user?

by (280 points)

1 Answer

0 votes
by (216k points)

Hello,

As far as we know, by default, in ADUC, you cannot view when a user's password is to expire. This is possible only using add-ins to ADUC, such as the Additional Account Info tab or similar. If this is the case, probably the add-in to ADUC is not working properly.

0

You are right I am using the the addional inof tab which may not be supported.

So ok, how do i see the password expiry date in Adaxes? I want to prove the fine grained password policy worked.

0

One additional thing. I have a scheduled task that notifies users when their pw will expiry. However that Adaxes tool seem to look at the domain policy and not the Fine Grained policy.

0

Hello,

So ok, how do i see the password expiry date in Adaxes? I want to prove the fine grained password policy worked.

Take a look at step 6 of the Manage Fine-Grained Password Policies Tutorial.

One additional thing. I have a scheduled task that notifies users when their pw will expiry. However that Adaxes tool seem to look at the domain policy and not the Fine Grained policy.

The Password Expiration Notifier builtin Scheduled Task takes Fine-Grained Policies into account. We have re-tested this in our testing environment today, and everything works OK.
If this does not work as desired in your environment, then we need to have a closer look at your Password Policies.

0

Yes it seems to be OK , thank-you for your help.

Related questions

0 votes
1 answer

I did some testing around Fine Grained Paswword Policy and Adaxes. See my previous post. It seems to be OK. HOWEVER If I use the Adaxes web portal to view a user's ... the default domain policy and not the true one as of the FGPP as implemented by Adaxes.

asked Dec 18, 2012 by It_helpdesk (280 points)
0 votes
1 answer

an OU is created in the Active Directory. but when I'm trying to select that in "password policy". the Adaxes is not allow for me to choose OU. only AD users and groups can be selected. is there any way to choose OU?

asked Sep 23, 2020 by justinh (60 points)
0 votes
1 answer

Hi everyone, How are you doing? I need to know how do I to make changes in selfservice password policy. Actually my policy is in production and all users have to ... the policy, keeping 2 responses from 4 questions already made? Thanks for all. Regards, Lopes

asked Nov 16, 2015 by ClownisThiii (100 points)
0 votes
1 answer

I'm testing making changes to a mailbox that is synced between AD and Office365. During changes updates are not reflected back. I'm prompted that the replication with AD Connect has ... in the web interface. If I go to the console I can see the change.

asked Aug 6, 2020 by ComputerHabit (790 points)
0 votes
0 answers

I have a report which is basically a query for specific set of users for which I want the last logon attribute (not the last logon timestamp). When I sort the same report ... fine. But the same report in Adaxes web portal the sort is not working the same way.

asked May 23 by Vish539 (460 points)
3,588 questions
3,277 answers
8,303 comments
548,086 users