1
Vote

SEC: Min age password policy

description

If the domain password policy has a minimum age then the user's CANNOT change their password until that min age has expired. This will effect our first time login process, especially if user workflow is turned off. Basically the scenario is a user get's added to a site (approved if WF on) and before the min age has expired they try to login for the first time. ADAM will not allow them too reset their password when they get to the Update Profile part of their first time login. If everybody will have a day or more gap between creating new users and their first login this is a non issue.

comments