Displaying expiring password notifications when using FileVault 2 with Active Directory accounts
Due to the way that FileVault 2 handles logins, with the user logging in at the pre-boot login screen and then brought directly into their account, users with Active Directory accounts will not get the password expiration warning that normally appears at the login window.
If you need to have those notifications in your environment, Peter Bukowinski’s ADPassMon is a great freeware utility for showing your users how long they have until their AD password expires. It launches and runs after the user logs in, so it’s unaffected by FileVault 2′s handling of the login process.
For complete information on this utility, see the ADPassMon product page.