@irj said in ADUC Set Password Expiry:
@gjacobse said in ADUC Set Password Expiry:
@irj said in ADUC Set Password Expiry:
You gotta teach good culture
Good Luck
Sometimes people have to be inconvenienced for security
Don't disagree - but can't stop doing business either.
Managing all these exceptions is an operational nightmare that will create a load of technical debt.
No lie - and no argument there. But resetting the expiry date/time doesn't seem all that different than resetting any password. few clicks and poof.
I can understand your point, but some responsibility for security must fall on the user. Management of course has to buy in on this and/or give full control of IT policies to a CISO/IT manager/generalist (depending on size of business).
Again - no disagreement. Barring this - being able to set a date for the password to expire that isn't to far out of policy seems better and more ideal than some of the options.