Password changes

[sdr67]

We are operating on a W2K single domain, across multiple sites and we are about to change our password policy settings. Changes include reducing the maximum age to 40 days and introducing complex passwords. All straight forward as you only have to change them once for the entire domain on the default policy (as password policies can only be set once, I think).

My concern is that when we do this will hundreds of users all receive requests to change their passwords overnight which will cause a huge headache for the help desk or is there a way to introduce these changes over time?

Thanks

 

[brontosaurus]

It's based on the current age of the individual's password, so in theory, yes, you could have alot of users expiring on the same day, depending on your situation. Probably the best way to get around this, is to set a 10 day advance warning policy (which you can change to 5 days down the road), in the hopes that many users will heed the advice of the warning message, and change their password before the actual expiration day.