This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 30%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENM%3C/text%3E%3C/svg%3E)
I’ve been looking at this issue and wondering if anyone else has seen it. A lot of Win10 machines I have enrolled in Intune are triggering an error on the System Security -> Password expiration (days) in the Windows 10 Compliance Policy. I see this in the Windows Event Log:
MDM PolicyManager: Set policy precheck precheck call. Policy: (DeviceLock), Area: (DevicePasswordExpiration), int value: (0x3C) Result:(0x80550009) There are other standard users present who are not allowed to change their password..
It’s trigger from the Defaultuser100000 which is set up by Self Service Password Reset (SSPR) and maybe the Windows 10 Upgrade. If I delete that account, the error resolves and the device tests as compliant.
I could write a script and deploy it with Intune to delete that account but I’d rather not, I’m concerned it could have unintended side effects on the machine, especially with SSPR.
Anyone else seen this before and have any ideas on how to approach fixing it?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 84%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
We have met the similar issue that is because on the client devices, there are local user accounts, which have a value set for "User cannot change password" or "Password never expires".
And the solution is on the client devices, open the Computer Management snap-in, and navigate to Local Users and Groups – Users. Please choose and double click the local user accounts and uncheck the User cannot change password and Password never expires options.
References
• Windows 10 Compliance Policy settings
If the response is helpful, please click "Accept Answer" and upvote it.