Re: Simple question on Password Policy

Tech-Archive recommends: Speed Up your PC by fixing your registry

From: Sunnie (Sunnie_at_discussions.microsoft.com)
Date: 08/14/04 

Date: Sat, 14 Aug 2004 10:55:04 -0700

My question is more on permissions and securities. Do I add users/OU's under
the securities area so that the users are forced to change their passwords,
or do I add computers? Because adding computers makes no sense to me, since
it's actually a password for the user and not the computer. Does my
confusion make any sense? :-)

"jabrandt@online.microsoft.com" wrote:

> You are correct that the password policy settings are in the computer config
> portion of Group Policy. This is to ensure that all the domain controllers
> read the same settings. When the users logon to the terminal server, they
> user a password that is authenticated by the DC's which will abide by the
> password policy.
> If this is a stand alone machine the the TS would take the place of the DC.
>
> --
> James Brandt [MSFT]
>
>
> "Sunnie" <Sunnie@discussions.microsoft.com> wrote in message
> news:EF317F8D-38D0-47C1-B84E-1BF71B27AF33@microsoft.com...
> > Good Morning, All ~
> >
> > I have a simple question, probably more like a stupid one, but here it
> > goes.
> > :) Everything I have read states that password policies are on the
> > computer
> > side. What do you do if you have between 60 to 80 users connecting to a
> > terminal server with thin clients?
> >
> > I just don't understand how a password policy can be in effect for these
> > users. Your help is greatly appreciated!!
> >
> > Sunnie
>
>
>

Relevant Pages

  • Re: Simple question on Password Policy
    ... The password policy is enforced by whatever computer owns the user account. ... Default Domain policy so that it is enforced by all domain member computers ... For domain user accounts, it is the domain ... those computers enforce whatever password policy applies to ...
    (microsoft.public.win2000.group_policy)
  • Re: Active Directory Folders
    ... I should say that I took the suggestion from the book(because it made a great ... > account objects so that these guys are under the Scope of the first Password ... > Policy and then create another Password Policy and link it to another OU ... >> there create an OU for users and an OU for Computers, ...
    (microsoft.public.windows.server.active_directory)
  • Re: Password Policy Help
    ... Password policy is computer configuration. ... Authenticated users also includes ... computers in it then it is not surprising that it did not work right. ... I can't seem to enforce the 5 character minimum. ...
    (microsoft.public.windows.group_policy)
  • Re: Password Expiry
    ... I ran rsop on the xp workstation & password policy was okay - no age limit ... However, when I ran the same on the server, all six entries under 'password ... ALL client computers had to change passwords last week. ...
    (microsoft.public.windows.server.sbs)
  • Re: Password policy
    ... Password policies must be set at the domain level. ... Windows 2003 as well. ... > the password policy, and link it to domain controllers. ... > replicate to all domain computers. ...
    (microsoft.public.win2000.security)