Fine grained password policy and AD bound Mac computers

I'd look to make sure you have your fined grained PSO's setup correctly. Our fine grained passwords have been working fine with AD bound Macs for several years. 2008 R2 AD functionality level.

Thanks for the reply. Do you also have a default domain password policy set? Ours is set to the standard 42 days policy and we set the fine grained password policies for a higher priority.

I'm in the same boat as @ironman. My AD bound Macs seem to only care about the domain default, so we just increased the default to what we wanted for our teachers anyway. Our printing setup requires connecting to shared printers on a Windows print server, and remebering the authentication credentials to the keychain (against our advice, but whatever) was breaking things constantly when this happened.

At least we slowed the service calls greatly by upping the domain default (our domain default was 30 days but we went to 90, the tradeoff being we required more complexity than they had previously -- baby steps....).

Thanks for the response @rusty.adams We were trying to figure out why the macs were able to see the password complexity in the fine grained password policy but not able to see the password expiry for FGP which was set to 90. Like you said the Mac seems to only recognize the default domain password.

@ironman We are experiencing the same issue over here running High Sierra. Did you ever get it resolved?

I'm having this issue right now in our environment, has anyone found a work around or fix for this?