We've implemented a domain wide password policy using the default domain policy, this applies to authenticated users. One question Im not sure about is I have an OU that all Admin id's and service accounts reside in, We've applied block inheritance on this OU but the Default Domain Policy is still being applied and password restrictions are being enforced. This might be my mis-understanding but shouldn't block inheritance stop this from applying to the user 'ids in this OU?
Steve List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/