Re: finally implementing password policy questions??
- From: "Roger Abell [MVP]" <mvpNoSpam@xxxxxxx>
- Date: Wed, 18 Apr 2007 06:40:59 -0700
"Bri" <Bri@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:2759C288-81BD-4B86-A277-676DD2AEB007@xxxxxxxxxxxxxxxx
Is this process documented somewhere? Do you know of a link?
Yes, I am sure it is documented somewhere. It is so fundemental that
I have not sought it out since maybe 1998 or 1999. Have you tried the
Windows server reskit? perhaps discussions in the deployment guide?
www.reskit.com
"Roger Abell [MVP]" wrote:
"Bri" <Bri@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:D16DFC0A-FFCE-4816-8B4C-7C36D6B12C7B@xxxxxxxxxxxxxxxx
Thanks again Roger... Ok I lied and have another question. Is there
anyway
around having to edit the "default domain policy" to get this to work?
One may set this in any GPO linked to the domain, provided that
no higher-priority domain-linked GPO also sets Account policies
with different values (in which case it would be effective).
"Roger Abell [MVP]" wrote:
Aging and complexity are two separate requirements.
That checkbox only exempts from password change being forced.
That an existing password does not meet new complexity requirements
is never checked. Complexity is enforced when a new password is
being defined, and only then.
"Bri" <Bri@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:2AD0998F-9AA4-4A90-900B-8373E7721767@xxxxxxxxxxxxxxxx
Roger.. thanks for the info! Just 1 more follow up. Even though that
check
box setting over-rides the aging will it make future passwords on my
system
account require complexity?
Brian
"Roger Abell [MVP]" wrote:
"Bri" <Bri@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:33B1FE7D-F15B-42BF-A1B0-3E2421027F93@xxxxxxxxxxxxxxxx
Hoping someone can answer a few questions?? We are finally
implimenting
a
complex password policy.
My question is what happens right after it is activated?
We have 2500 users. Will they all get prompted right away if
their
current
password does not meet some or all of the standards i set?
The new complexity requirements are only applied when they
change their passwords next; the aging settings take effect right
away based on when their passwords were last changed.
For my system accounts if I leave the box checked that statesThat setting "overrides" password aging settings (much as it
"password
never expires" will they be protected from the new policy?
would seem by its naming).
.
- Follow-Ups:
- Re: finally implementing password policy questions??
- From: Bruce Sanderson
- Re: finally implementing password policy questions??
- References:
- Re: finally implementing password policy questions??
- From: Roger Abell [MVP]
- Re: finally implementing password policy questions??
- From: Roger Abell [MVP]
- Re: finally implementing password policy questions??
- From: Roger Abell [MVP]
- Re: finally implementing password policy questions??
- From: Bri
- Re: finally implementing password policy questions??
- Prev by Date: Re: Restricting Power Users to change permission
- Next by Date: Re: Install printer without admin rights with PushPrinterConnections.exe ?
- Previous by thread: Re: finally implementing password policy questions??
- Next by thread: Re: finally implementing password policy questions??
- Index(es):
Relevant Pages
|
