Why Windows domain controller reset password for domain computers? [closed]

password windows reset domain-controller

Solution 1:

There seems always to be a bit of non-understanding when it comes to domain-joined (Windows) computers and how/when they update their AD computer object (machine account) passwords.

Here are a few key points

  • The "default domain policy" setting configures domain-joined Windows 2000 (& up) computers to update their passwords every 30 days (default)
  • Computer password update policy is configured in the Default Domain Policy setting
  • Computers joined to an AD domain have an associated computer account in AD and that account (object) has an associated password
  • This is not "fix": The computer updates the password when it thinks it needs to, but the domain doesn’t block computer accounts with passwords older than the policy setting
  • The local computer’s Netlogon service handles the machine account password updates, not Active Directory

Or in Short:

Is it normal?

Yes, it is.

Related

About IOPS of a RAID5 disk array without cache
ubuntu 127.0.0.1 not working, going timeout
Outlook "Empty Deleted Items folders when exiting Outlook" option is greyed-out
Fully remove a default program association for file types in Windows 10?
Windows 10 mounts USB drive after 6 minute delay
What is the difference between USB Mini A and Mini B?
In Windows 10, how can we set an application to be the default for all of its supported file types?
constantly run into ERR_NETWORK_CHANGED error on chrome/mac when switching between vpn and home networks. All the browsers run into this issue
I think my laptop's wifi adapter hardware damaged
Excel Formula using multiple conditions
Howto repair broken USB-C Power Delivery cable?
Why has the behavior of my tab key changed on mac