Re: ADAM Password Policy Enforcement Problems

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

Hi
I also having the same problem . I changed from setpassword to
ChangePassword but it throws me this error.

System.Runtime.InteropServices.COMException: A constraint violation occurred.

So kindly tell me what may be the pblm.

"Dave" wrote:

> Thanks Lee. I changed from SetPassword to ChangePassword and now it's
> enforcing it :)
>
> Dave
>
> "Lee Flight" <lef@xxxxxxxxxxxxxxx> wrote in message
> news:ewwZlumSFHA.1396@xxxxxxxxxxxxxxxxxxxxxxx
> > Hi
> >
> > for setting ADAM user passwords the recommended code is
> >
> > http://msdn.microsoft.com/library/en-us/adam/adam/setting_user_passwords.asp
> >
> > The .vbs you cite below does some odd things with dsheuristics to defeat
> > the secure channel requirement for password operations.
> >
> > On the password policy some aspects of password policy are only enforced
> > on password changes (strictly those things governed by the
> > User-Change-Password
> > extended right); password resets (User-Force-Change-Password extended
> > right)
> > which is what you are exercising are not subject to all the constraints. I
> > am
> > fairly sure that MinPwdAge only applies to changes as I have been bitten
> > by that, I'm afraid I do not know of a definitive list of which
> > constraints apply
> > to which operation. Maybe one of the AD experts will know.
> >
> > Lee Flight
> >
> > "Dave" <davidpet@xxxxxxxxxxxxx> wrote in message
> > news:ee$wcbmSFHA.3176@xxxxxxxxxxxxxxxxxxxxxxx
> >> I've setup an ADAM on a Windows 2003 server in workgroup mode. The local
> >> security policy is:
> >>
> >> - Minimum Password Age = 1
> >> - Enforce Password History = 5 Passwords Remembered
> >> - Password Complexity Required = Enabled
> >>
> >> When I use the sample provided as part of the labs
> >> (setpassword_adam.vbs), only the password complexity rule is enforced.
> >> If I set the password to "p", it fails with a constraint violation. But
> >> the other 2 are not enforced. I can change the password as often as I
> >> want and repeat previous passwords.
> >>
> >> How can I get the other 2 rules to be enforced?
> >>
> >> Thanks,
> >> Dave
> >>
> >
> >
>
>
>
.

Relevant Pages

  • Re: ADAM Password Policy Enforcement Problems
    ... ChangePassword but it throws me this error. ... I changed from SetPassword to ChangePassword and now it's ... > enforcing it:) ... >> which is what you are exercising are not subject to all the constraints. ...
    (microsoft.public.windows.server.active_directory)
  • Re: ADAM Password Policy Enforcement Problems
    ... ChangePassword but it throws me this error. ... I changed from SetPassword to ChangePassword and now it's ... > enforcing it:) ... >> which is what you are exercising are not subject to all the constraints. ...
    (microsoft.public.windows.server.active_directory)
  • Re: Mixing authentication type flags & By design Bug from MS ?
    ... SetPassword and the "change password" permission to call ChangePassword. ... if you can't get Kerberos signing/sealing to work. ... > with any other flags, the SetPassword or ChangePassword is done ...
    (microsoft.public.dotnet.security)