Re: Password must meet complexity requirements
- From: Deb H <DebH@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 5 Sep 2006 12:23:02 -0700
DCdiag shows no errors. Everything passes. I tried running my test by
password on a local user. The complexity rule works for the local account,
just not my domain accounts.
"Jorge Silva" wrote:
.Also check DC replication (e.g., DCDiag) since if some DC(s)
is (are) not replicated for that GPO then it won't apply if pulled
from there.
that was going to be my next move...
--
I hope that the information above helps you
Good Luck
Jorge Silva
MCSA
Systems Administrator
"Herb Martin" <news@xxxxxxxxxxxxxx> wrote in message
news:ueHjRXIyGHA.4232@xxxxxxxxxxxxxxxxxxxxxxx
Also check DC replication (e.g., DCDiag) since if some DC(s)
is (are) not replicated for that GPO then it won't apply if pulled
from there.
Technically the actual GPOs are replicated with the File Replication
System (of SysVol) but if the AD is replicated (and you aren't
experiencing other troubles) then likely it is replicated if AD is.
--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]
"Jorge Silva" <jorgesilva_pt@xxxxxxxxxxx> wrote in message
news:%23G1LAQIyGHA.1256@xxxxxxxxxxxxxxxxxxxxxxx
On the server where you're performing these tests, check Administrative
Tools -> Domain Security Policy.
This policy referes to Default Domain Policy, and it's replicated every 5
min accross DCs.
--
I hope that the information above helps you
Good Luck
Jorge Silva
MCSA
Systems Administrator
"Deb H" <DebH@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:63008EBF-55F0-4A12-9E11-C9833B791D1F@xxxxxxxxxxxxxxxx
I am sorry. I am using the GPO Management tool looking at the PDC. Is
there
somewhere else to see that it is refreshed?
"Jorge Silva" wrote:
Did you check if the policy on the DC is refreshed?
--
I hope that the information above helps you
Good Luck
Jorge Silva
MCSA
Systems Administrator
"Deb H" <DebH@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:A9E4A5B8-9883-4CFE-B02A-A63B571C4902@xxxxxxxxxxxxxxxx
The same result. The complexity piece just doesn't seem to be
applied.
"Jorge Silva" wrote:
did you run the commands on the server?
What happens when you try to change the user's password on the
server?
--
I hope that the information above helps you
Good Luck
Jorge Silva
MCSA
Systems Administrator
"Deb H" <DebH@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:22CF15C2-12B7-45C1-A7A3-BC6997B90E18@xxxxxxxxxxxxxxxx
When I run a gpresult and net accounts, it show that the policy is
applied. I
have tested changing the password on an XP pc. It does not allow
me to
use
a
previous password or password less than 7 characters (as I put in
my
policy).
But it doesn't seem to meet the complexity requirements. I am able
to
change
the password to all lower case with no special characters or
numbers.
"Herb Martin" wrote:
"Deb H" <DebH@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:9B11A881-A048-402C-9A73-BCA7F3032548@xxxxxxxxxxxxxxxx
I have configured my Group Policy for the domain to have
passwords
meet
the
complexity requirements. However, when I test this, the
password
does
not
reflect complexity. Any Ideas on how I might correct this?
Security Account Policies are ONLY EFFECTIVE at the DOMAIN level.
(Password, Kerberos, Lockout.)
You must link the GPO to the domain to see an effect (not OU or
Site)
with these policies.
--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]
- Follow-Ups:
- Re: Password must meet complexity requirements
- From: Herb Martin
- Re: Password must meet complexity requirements
- Prev by Date: Re: Migrating NT4 to Windows 2003
- Next by Date: Re: Advice Import Mac Open Directory users/groups to Win 2003 AD
- Previous by thread: Re: Password must meet complexity requirements
- Next by thread: Re: Password must meet complexity requirements
- Index(es):
Relevant Pages
|
