Skip navigation
Menu
Compute Engines

Frequency of machine account password changes

Each member of a domain has a machine account password that automatically changes every 30 days for Windows 2000 and later OSs and every seven days for Windows NT-based computers. This time interval of password change for Windows XP and later versions can be configured via Group Policy, if needed, at the Computer Configuration, Windows Settings, Security Settings, Local Policies, Security Options branch. Three settings in particular are of interest:

  • Domain Member: Disable machine account password changes (DisablePasswordChange)
  • Domain Member: Maximum machine account password age (MaximumPasswordAge)
  • Domain Controller: Refuse machine account password changes (RefusePasswordChange), as the figure shows.
    • Machines that fail to change their passwords after 60 days can no longer communicate with the domain.

    —John Savill

Hide comments

More information about text formats

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish
Recommended Reading
empty cockpit of autonomous car
What Is a Real-Time Operating System, and Who Needs One?
Mar 05, 2024
ERP button on keyboard
5 ERP Trends to Watch in 2024
Jan 17, 2024
automation key on keyboard
Storage Management as a Case Study for Network Automation Adoption
Dec 21, 2023
Abstract technology concept lighting effect on dark blue background
Top 10 Stories About Compute Engines, Linux in 2023
Dec 18, 2023