r6xx3 (r6xx3) asked a question.
How to handle local Windows machines after moving to UD
When moving away from an AD setup, what is the best way to ensure local Windows machines being used are forcing password changes at the same time as UD / Okta? I know a local security policy can be set seperately on the Windows machine but that makes me concerned for the potential of more frequent password changes. It also implies to me that perhaps a user would change their UD password to one thing and a next time their local machine prompts them to change it to something else. How does this work, what is best practice??
I'm gonna take a stab here and say this isn't going to work well or at all as Windows machines globally will only obey Active Directory Domain GPOs. Managing or enforcing Windows machine policies using Okta isn't something Okta is can do. Maybe eventually but the focus now is identity.