Re: Changed Domain Security Policy not changing

From: "Ulf B. Simon-Weidner [MVP]" <nospam2-ulf@xxxxxxxxxxxxxxxxxx>
Date: Sat, 16 Jul 2005 05:19:04 -0700

Hi Eric,

thanks (for the feedback and the smile) - you're welcome. Post back if you
have any more questions.

--
Gruesse - Sincerely,

Ulf B. Simon-Weidner
Blog: http://msmvps.com/ulfbsimonweidner

"Eric W. Holzapfel" wrote:

> Ulf B. Simon-Weidner [MVP] wrote:
> > "Eric W. Holzapfel" <eholzapfel@xxxxxxxxxxxxxxx> wrote in message
> > news:eholzapfel@xxxxxxxxxxxxxxx:
> >
> >> Hello AD Group,
> >>
> >> I have set my domain security policy to no define passwords, no history,
> >> no complexity, etc. This is for a test server in a development
> >> environment. We do not want to have a domain security policy set for
> >> passwords.
> >>
> >> My problem, I have set the properties for the password all to "not
> >> defined", but it still will not let me log on and change a password to
> >> to a password with no characters, or 1 character, etc.
> >>
> >
> > Hi Eric,
> >
> > This is a common mistake: you have to keep the settings defined, but
> > adjust their content to your needs, e.g. have require complexity defined
> > but disabled, passwordlength defined but set to 0, ... If you uncheck
> > defined than this part of the policy is not applies, and the systems are
> > not modified.
> >
> > Also make sure that you can change the password restrictions for domain
> > users _only_ in the Default Domain Policy, or another policy linked to
> > the Domain-Container. Default DCs or any other policy would only affect
> > local user accounts for the computers which the policy applies to.
> >
> > --
> > Gruesse - Sincerely,
> >
> > Ulf B. Simon-Weidner
> >
> > MVP-Book "Windows XP - Die Expertentipps": http://tinyurl.com/44zcz
> > Weblog: http://msmvps.org/UlfBSimonWeidner
> > Website: http://www.windowsserverfaq.org
> >
> >
> Fielen Dank Ulf! I will reset accordingly.
>
> Tcheuss,
>
> eric
>
.

References:
- Changed Domain Security Policy not changing
  - From: Eric W. Holzapfel
- Re: Changed Domain Security Policy not changing
  - From: Ulf B. Simon-Weidner [MVP]
- Re: Changed Domain Security Policy not changing
  - From: Eric W. Holzapfel

Prev by Date: RE: Number of Computers an Authenticated Users can join to a Domain
Next by Date: How to promote a DC as a global Catalog
Previous by thread: Re: Changed Domain Security Policy not changing
Next by thread: Checking Active Directory Passwords
Index(es):
- Date
- Thread

Relevant Pages

Re: Domain Password Policies
... I setup the AD in 2003 Server and is running it in a Test environment. ... Everytime I create a new user,I have to try different passwords due to the ... changing the Domain Security policy. ... MAC users and PDA users too. ...
(microsoft.public.windows.server.active_directory)
Re: Active Directory
... >> passwords can't protect you. ... > I'm pretty sure Laura knows about LC5, however the intention of the OP ... Correct on both counts, Ulf. ...
(microsoft.public.windows.server.active_directory)
Re: Detecting weak passwords free tool
... Detecting weak passwords free tool ... You could use a Domain Security policy for this. ... > I'm looking for a free tool to check our NT users for weak passwords. ...
(Security-Basics)
Password Complexity
... all settings in Domain Security Policy and Domain ... Controller Security Policy to allow zero lenght passwords ...
(microsoft.public.windows.server.general)
Re: minimum password length
... for replication and application on the machines, ... problem with DC-DC replication. ... I made the change in "Domain Security Policy" but it did not ...
(microsoft.public.windows.server.security)