Resolution
fact
VigilEnt Security Manager 4.x
fact
NetIQ Vulnerability Manager 5.0
fact
NetIQ Vulnerability Manager 5.5
symptom
Newly created Windows users are appearing in the 'Users with Expired Password' report.
cause
New user accounts with User must change password at next logon enabled will appear in the 'Users with Expired Password' report. This is because Microsoft Windows 2000 and Windows NT recognizes the setting 'User must change password at next logon' as a password status of expired.
fix
To distinguish whether or not the user has logged in and changed their password, look in the Description column of the report. If the user has never logged on, the report will indicate this in the Description column as 'User Never Logged On.'
VigilEnt Security Manager 4.x
fact
NetIQ Vulnerability Manager 5.0
fact
NetIQ Vulnerability Manager 5.5
symptom
Newly created Windows users are appearing in the 'Users with Expired Password' report.
cause
New user accounts with User must change password at next logon enabled will appear in the 'Users with Expired Password' report. This is because Microsoft Windows 2000 and Windows NT recognizes the setting 'User must change password at next logon' as a password status of expired.
fix
To distinguish whether or not the user has logged in and changed their password, look in the Description column of the report. If the user has never logged on, the report will indicate this in the Description column as 'User Never Logged On.'
Additional Information
Formerly known as NETIQKB31880