+3I have been having this issue where some of our Mac computers are being force to change their password approximately every 90 days. First thing comes in mind is if we have a Jamf policy for password expiration. As per checking we don’t have any policy enforced for a password expiration. I’ve been researching if what may be the cause, most says that it’s due to an MDM.
Anyone having this kind of issue? how did you resolved it. We don’t want to set an expiration date for our Mac passwords.
+6Run this on an affected Mac to see if a local password policy exists:
sudo pwpolicy -u $(whoami) -getaccountpoliciesLook for policyAttributeExpiresEveryNDays. If set to 90, this is your culprit. To clear it:
sudo pwpolicy -u <username> -clearaccountpolicies
Reference: Passcode device management payload settings for Apple devices - Apple Platform Deployment
+11Yes I was going to suggest, run your policy to see what the results should be on a machine you know what the results should be. Are you using a script?
+3
+6Please run this command to check the global policy:
sudo pwpolicy -getaccountpolicies
If you see policyAttributeExpiresEveryNDays with value 90 in the output, the policy is set by a Configuration Profile.
+11
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.