Re: ADAM custom password policy
- From: "Lee Flight" <lef@xxxxxxxxxxxxxxx>
- Date: Tue, 25 Jul 2006 12:06:45 +0100
Hi
ADAM specific password policies have been asked for a number
of times. Hopefully Microsoft will pick up the idea. One thing you
could try is setting a password policy at the OU level in a domain
environment and placing your ADAM servers in that OU (I have yet
to try this out).
When you say "additional actions (e.g. auditing)" what do you have in
mind here? If you have logon auditing enabled in your server audit policy
you should see ADAM user logon audit events, for windows principals
you should see a logon event in the local server or DC depending on
the account.
Thanks
Lee Flight
"roberto" <roberto.marchickos@xxxxxxxxx> wrote in message
news:1153814118.447482.60950@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Is it possible to make ADAM to call a configurable "plugin" to enforce
custom policy?
As I understand you can disable default policy enforcement (which calls
OS API NetValidateUserPassword) - so may be you can also refirect this
call somehow?
It would be nice to apply extended (comparing to OS) password policies
to users authenticating using standard LDAP; also, the "plugin" could
perform additional actions (e.g. auditing). And all of this using
secure and extensible AD store...
Any thoughts on this?
.
- Follow-Ups:
- Re: ADAM custom password policy
- From: roberto
- Re: ADAM custom password policy
- References:
- ADAM custom password policy
- From: roberto
- ADAM custom password policy
- Prev by Date: Re: Building an Address directory for EMail and ditribution lists using ADAM
- Next by Date: Re: ADAM What to do it with
- Previous by thread: ADAM custom password policy
- Next by thread: Re: ADAM custom password policy
- Index(es):
Relevant Pages
|
