I used ADSIEdit to enforce a 15-character password in my Server 2003 domain, which was successful. I then changed the Maximum Password Age in Active Directory Users & Computers to 365 days, but the password continues to expire after 42 days (the default setting). I see in ADSIEdit on Server 2008 the syntax is different than that in Server 2003 (days:hours:minutes:seconds in 2008 vs. a huge "-number interval" in 2003). I would like to be able to set the password to expire after 365 days in my 2003 domain. Any ideas how I accomplish this, short of installing a 2008 DC into my environment? Any feedback is greatly appreciated.