Re: Mass change passwords on service and scheduled tasks
- From: "Phillip Windell" <philwindell@xxxxxxxxxxx>
- Date: Mon, 5 May 2008 10:45:23 -0500
Here's an example of a set of Password Policies that you can "promise" to
the SOX auditors.
Policy #1: We will force a password change of Accounts that represent
employees every 60 days
Policy #2: We will force a password change of maintanence accounts that do
not represent employees (eg. Administrator accounts) every 120 days. (or
whatever you choose).
Policy #3: We will enforce stronger password complexity for Service Accounts
not used for employee logins. Accounts will not have a forced password
change policy (or you could force an Annual change every 365 days).
Then SOX auditors would expect you to follow these policies.
In other words be more specific in your "promises" and be careful not to
shoot yourself in the foot. If you feel it will take an "act of congress"
to alter the policies that have been set then,...that is no excuse to not do
it,...it just means "congress" needs to get busy and do a better job on the
second try.
--
Phillip Windell
www.wandtv.com
The views expressed, are my own and not those of my employer, or Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------
.
- Follow-Ups:
- References:
- Mass change passwords on service and scheduled tasks
- From: Jordan
- Re: Mass change passwords on service and scheduled tasks
- From: Phillip Windell
- Re: Mass change passwords on service and scheduled tasks
- From: Jordan
- Re: Mass change passwords on service and scheduled tasks
- From: Phillip Windell
- Mass change passwords on service and scheduled tasks
- Prev by Date: Re: Mass change passwords on service and scheduled tasks
- Next by Date: Re: Mass change passwords on service and scheduled tasks
- Previous by thread: Re: Mass change passwords on service and scheduled tasks
- Next by thread: Re: Mass change passwords on service and scheduled tasks
- Index(es):
Relevant Pages
|
