Re: password policy

From: "Steven L Umbach" <n9rou@xxxxxxxxxxxxxxxxxx>
Date: Thu, 2 Jun 2005 14:05:51 -0500

You have to disable or change the policy at the domain level for domain
users. Never "undefine" a password policy setting. Always set it to exactly
what you want. Often a setting of zero will disable the policy if there is
not specific enable/disable option. After you are done either wait at least
five minutes or use secedit to refresh security policy on the domain
controller and run the command net accounts to see the new effective
passwrods policy. --- Steve

"alexo" <alexo@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:B0047A9D-A349-4BBF-BF36-2880A6A806DF@xxxxxxxxxxxxxxxx
>I enabled a group policy to force users to change their passwords every 180
> days. Management asked me to disable the policy so I did. Users are
> still
> prompted every 180 days to change their passwords. I disabled the policy
> at
> the OU level and at the domain level. What am I missing?
> --
> alexo

.

Follow-Ups:
- Re: password policy
  - From: alexo

References:
- password policy
  - From: alexo

Prev by Date: Re: My Documents Folder
Next by Date: Recycle Bin
Previous by thread: password policy
Next by thread: Re: password policy
Index(es):
- Date
- Thread

Relevant Pages

Re: Domain
... Domain Controller Security Policy has all user rights assignments ... Configuring ipsec policy at the domain level ...
(microsoft.public.win2000.group_policy)
Re: Security hierarchy
... policy level also. ... >>can be configured only at domain level. ... Try running security configuration and ... >>try not to change domain and domain controller policy, ...
(microsoft.public.win2000.security)
Re: Login Scripts
... Default Domain Policy) that contains the "baseline" settings that users ... at the OU level will override settings declared at the domain level, and GPO ... > domain if no MSI package is found. ...
(microsoft.public.windows.server.active_directory)
Re: Security hierarchy
... OK - last night I managed to reset the password policy. ... I had to boot into DS restore mode in order to be able to access the ... New users had to have complex passwords. ... >> I have tried all the suggestions plus a new top GPO at domain level ...
(microsoft.public.win2000.security)
Re: Security hierarchy
... can be configured only at domain level. ... would only apply to local machine accounts if domain policy is overridden.. ... I have found that sometimes certain settings do not "show up" in a timely ... > Currently Domain and DC Security policy have all display password ...
(microsoft.public.win2000.security)