Re: Group Policy Question
- From: stosti <stosti@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Sun, 29 Jan 2006 09:38:27 -0800
Yes you did. I was hoping I misunderstood... I'm all set as I am. Thanks
for taking the time to answer!
Another question for you... When a user changes there password and gets
locked out is there any easy way to find out from what means or machine is
the culprit?
Thanks in advance!
"Cary Shultz" wrote:
> Stosti,
>
> Didn't I just explain this?
>
> --
> Cary W. Shultz
> Roanoke, VA 24012
> "stosti" <stosti@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> news:23C6EE00-34CB-409B-A8D8-3EEEBA16FBF7@xxxxxxxxxxxxxxxx
> > Thank You!
> >
> > OK... If I remove the password policy from the top level can I put a
> > password policy on each OU?
> >
> > Regards,
> > Scott
> >
> > "Jorge de Almeida Pinto [MVP]" wrote:
> >
> >> Use the GPMC
> >> (http://www.microsoft.com/windowsserver2003/gpmc/default.mspx
> >> and
> >> http://www.microsoft.com/downloads/details.aspx?FamilyID=0A6D4C24-8CBD-4B35-9272-DD3CBFC81887&displaylang=en),
> >> create additional GPOs and link the GPOs to the OUs you created.
> >>
> >> It is not possible to configure password policies on an OU for users in a
> >> domain.
> >>
> >> The correct answer for this is:
> >> Password policies can only be configured at REALM level for the users
> >> within
> >> that REALM.
> >>
> >> What is a REALM? A realm could be a domain, a single server, a single
> >> client.
> >> For all mentioned, users can be created in the realm. For the domain you
> >> can
> >> create domain users and for single servers and clients you can create
> >> local
> >> users that belong only to the local server or client
> >>
> >> If you apply password policies at domain level the policies apply to
> >> domain
> >> users and local users on each server and client
> >> If you apply password policies at OU level the policies apply ONLY to the
> >> users of the servers or clients within that OU
> >>
> >> So if you want different password policies you need multiple domains OR
> >> you
> >> could use third party products that provides this functionality
> >>
> >> --
> >>
> >> Cheers,
> >> (HOPEFULLY THIS INFORMATION HELPS YOU!)
> >> # Jorge de Almeida Pinto #
> >> MVP Windows Server - Directory Services
> >> BLOG --> http://blogs.dirteam.com/blogs/jorge/default.aspx
> >> -----------------------------------------------------------------------------
> >> * This posting is provided "AS IS" with no warranties and confers no
> >> rights!
> >> * Always test before implementing!
> >> -----------------------------------------------------------------------------
> >>
> >>
> >> -----------------------------------------------------------------------------
> >> "stosti" <stosti@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> >> news:C5B0F3B7-20A8-4F01-A57B-4B5881672B6A@xxxxxxxxxxxxxxxx
> >> > Today I have a default group policy for all of my users. I created a
> >> > different O.U. for each department. Now I would like a different group
> >> > policy per O.U. Do you have instructions for doing this?
> >> >
> >> > Example I will set a different password policy per OU.
> >> >
> >> > Thanks,
> >> > Scott
> >>
> >>
> >>
>
>
>
.
- Follow-Ups:
- Re: Group Policy Question
- From: Jorge de Almeida Pinto [MVP]
- Re: Group Policy Question
- References:
- Re: Group Policy Question
- From: Jorge de Almeida Pinto [MVP]
- Re: Group Policy Question
- From: stosti
- Re: Group Policy Question
- From: Cary Shultz
- Re: Group Policy Question
- Prev by Date: Re: GPOs are not taking effect - Event ID 1054
- Next by Date: Re: 2000 AD to 2003 AD
- Previous by thread: Re: Group Policy Question
- Next by thread: Re: Group Policy Question
- Index(es):
Relevant Pages
|
