I think it's an ACE. Check out http://msdn.microsoft.com/en-us/library/aa746508(VS.85).aspx <http://msdn.microsoft.com/en-us/library/aa746508%28VS.85%29.aspx>for info on how to read and change it programatically. On Wed, Jun 17, 2009 at 11:02 AM, Doug Rooney <Doug@xxxxxxxxxxxxxxxxxxxx>wrote: > I have a number of remote users that log in via MSTSC, in Active > Directory I set everyone so they cannot change their password, but even > though I check it, and save, the next time I go in, it is unchecked, is > there a way in either AD or somewhere else that I can be assured that it is > set and locked? > > > > Thank You > > ~Doug Rooney > Sonoma Tilemakers > IT Manager > 7750 Bell Rd. > Windsor Ca, 95492 > (707) 837-8177 X211 > (707) 837-9472 FAX > it@xxxxxxxxxxxxxxxxxxxx > > >