Secedit Export and Password complexity is missing.

---

• From: "Murali.A" <MuraliA@xxxxxxxxxxxxxxxxxxxxxxxxx>
• Date: Thu, 8 Sep 2005 07:58:27 -0700

---

Hi All,
My server is a W2K server configured to the domain server and the domain
group policy is applied to it. When I open the Local Security Policy and it
showed that Password Complexity was available and set. But when I run the
secedit command - %SystemRoot%\system32\secedit.exe /export /mergedpolicy
/cfg dump.txt /areas SECURITYPOLICY the following is the extracted result
from the dump.txt file.
My questions:-
1. Why the password complexity information (actually all the password
information) is missing from the output? (Some of the other servers the above
command gives the password information)
2. Is there any exception on which Secedit may not return the password
information of a local or merged security policy?

Local Security Policy check
[Unicode]
Unicode=yes
[Version]
signature="$CHICAGO$"
Revision=1
[Profile Description]
Description=Default Security Settings. (Windows Server)
[System Access]
ForceLogoffWhenHourExpire = 1
NewAdministratorName = "pssnt"
EnableGuestAccount = 0
[System Log]
MaximumLogSize = 16384
AuditLogRetentionPeriod = 0
RetentionDays = 7
[Security Log]
MaximumLogSize = 64000
AuditLogRetentionPeriod = 0
RetentionDays = 7
[Application Log]
MaximumLogSize = 16384
AuditLogRetentionPeriod = 0
RetentionDays = 7
[Event Audit]
AuditSystemEvents = 3
AuditLogonEvents = 3
AuditPolicyChange = 3
AuditAccountManage = 3
AuditProcessTracking = 3
AuditAccountLogon = 3
[Registry Values]
.....

Any help is highly appreciated.

Thanks,
Murali.
.

---

• Prev by Date: Re: Undo Group Policy changes? - Help!
• Next by Date: Re: Screensaver policy
• Previous by thread: Restrict no of logons per user
• Next by thread: GPO not applying. Please help
• Index(es):
  • Date
  • Thread

---

Relevant Pages Domain Controller Security Policy errors ... Security Policy or the Domain Controller Security Policy. ... The DC is also a print and file server. ... The domain controller for Group Policy operations is not available. ... (microsoft.public.win2000.active_directory) Re: Help needed in changing Local password Policy. ... server that logs into a particular domain. ... Skirao ... The OU password policy will affect any *local* account you ... >> complexity" setting the local security policy as everything is grayed out. ... (microsoft.public.windows.server.general) Re: Inherited security properties ... group policy set on the organizational until that your server is in. ... settings at the local policy level. ... > When I look at the local security policy on the Windows ... (microsoft.public.win2000.security) Re: FYI...ActiveX Error Resolved ... > I'll never know if IIS and the cryptographic functionality was screwed up ... > verified that the problem was a Group Policy problem. ... > to the SBS Client Computers GPO, removed the link to SBS Server Auding ... > Also in the Local Security policy on the server, ... (microsoft.public.windows.server.sbs) Re: Win2000 Terminal Server Logons not permitted ... One is the> DNS server running SQL server and the other is a terminal> server running Citrix Metaframe. ... When we try to logon> users we get the following message "The local policy of> this system does not permit you to logon interactively." ... > We have changed permissions in Domain Security Policy,> Local Security Policy, and Domain Controller Security> Policy and the users are able to logon for a few minutes. ... (microsoft.public.win2000.group_policy)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Win2000  > microsoft.public.win2000.group_policy  > 2005-09