I've got a client who's having an odd password reset issue. They have five domain controllers - three of them are Windows Server 2003 Server and two are Server 2008. The primary is a 2003 system. Workstations are Windows XP.
The issue is if user passwords are about to expire (or have expired) when users try to reset it themselves, they get a error saying that the domain is not available, or that the password has to be at least 6 characters long and at least a day old.
The admin will usually have to go in and reset the each user's password to a default to get them logged on. From there, the users can Ctrl+Alt+Del to change to a different password.
FYI, the password policy is set at default: 24/42/1/3/disabled/disabled. (Don't mention it...I know, that's another issue altogether!)
It sounds like the workstations are getting some mixed messages about password policies and wanted to see if any of you have any ideas?
Software/Hardware used: windows xp, windows server 2003, windows server 2008