You apply them at an OU level, it will apply to local accounts on computers within scope. It won't apply to domain accounts.
Cheers Ken From: Gavin Wilby [mailto:[EMAIL PROTECTED] Sent: Thursday, 10 January 2008 10:23 PM To: NT System Admin Issues Subject: Password policy Hi, In the dim and distant past I have a feeling that password policies (expiration, retenetion, complexity) have to be applied at the default domain level, and if you try and assign further permissions, say on an OU, they will get ignored. is this the case or am I way off the mark as usual? Happy new year BTW. Gavin. ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~