From domain controller, go to Administrative Tools and select "Default Domain Security Settings." Under Account Policies > Password Policy, change minimum password page to 75 days and maximum password age to 90 days. This way, you get a warning after the 75th day to change the password before the 90th day.