Re: Interesting Password Behaviour
- From: "Joe Richards [MVP]" <humorexpress@xxxxxxxxxxx>
- Date: Fri, 19 May 2006 10:04:58 -0400
Honestly, it has been quite a while since I played with policy on a 2K domain, it could be that there was a bug in that on 2K or it wasn't supported, I don't recall. If I were to look at this, I would build a free 2K only domain and patch it to the latest rev and verify
a) that the policy is there
b) whether it works or not
If it is there and it doesn't work, then I would consider bugging it with MSFT but most likely not as 2K is now N-2 (R2 is N) and will probably be N-3 within the next year which means the chance of a non-critical bug being corrected is almost nil.
--
Joe Richards Microsoft MVP Windows Server Directory Services
Author of O'Reilly Active Directory Third Edition
www.joeware.net
---O'Reilly Active Directory Third Edition now available---
http://www.joeware.net/win/ad3e.htm
GaryS wrote:
Hi Joe...
Yes I worked out that the LM hash would be needed - but based on the
Network Security: Do not store LAN Manager..... being enabled I would
have expected that Win2000 DCs also wouldnt store a hashed passsword..
Based on my testing all the Win2000 DCs are setting passwords that the
DOS client can authenticate with - which is contary to the policy
setting..
Has anyone else come across this behaviour ??
- Follow-Ups:
- Re: Interesting Password Behaviour
- From: GaryS
- Re: Interesting Password Behaviour
- References:
- Interesting Password Behaviour
- From: gsimmons . uk
- Re: Interesting Password Behaviour
- From: Joe Richards [MVP]
- Re: Interesting Password Behaviour
- From: GaryS
- Interesting Password Behaviour
- Prev by Date: Re: Track Active Directory Operation
- Next by Date: Re: How To Show/Edit EmployeeID in Users and Computers snap-in?
- Previous by thread: Re: Interesting Password Behaviour
- Next by thread: Re: Interesting Password Behaviour
- Index(es):
Relevant Pages
|
