Re: MSDSS Error...

Maybe you have a strong password policy and even if the passwords are not
blank, they are not meeting the password policy restriction. Are using
Windows 2003?

--
Regards,
Andrei Ungureanu
www.eventid.net
Test our new EventReader!
http://www.altairtech.ca/eventreader/default2.asp?ref=au

"KingBuzzo" <KingBuzzo@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:C6A48367-E335-4101-89DC-16A4780B5869@xxxxxxxxxxxxxxxx
Hmmm...interesting...

However, I am not setting the password to blank at all and I have
dumbed-down the password restrictions on both directories.

I just tested it again and this time I used completely different passwords
than I was using in my test and it worked!

I wonder if Novell is picking up on the password being recycled and
disabling it without giving me any obvious error messages?

I will keep testing with other users to see if the problem is
intermittent.

Your thoughts?

"Andrei Ungureanu [MVP]" wrote:

searching for the error code on google returned this:
http://www.mcse.ms/message2299777.html

--
Regards,
Andrei Ungureanu
www.eventid.net
Test our new EventReader!
http://www.altairtech.ca/eventreader/default2.asp?ref=au

"KingBuzzo" <KingBuzzo@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:B6EA9C9F-E7E3-46EB-86DB-C5A26F3D78D9@xxxxxxxxxxxxxxxx
Hi Guys:

I have successfully setup MSDSS to perform two-way syncs with our old
NDS.

However, if I try to reset the user's p/w in AD, sometimes I get a
failure
in the MSDSS log that reads the following:
Event ID:0

The password for user "O=CCMB/OU=MCC/OU=CP/CN=TUser2" could not be set,
possibly due to password policy restrictions. The error code returned
is
0x800704b8. The account has been disabled to prevent access using a
blank
password.

My project consists of migrating xp workstations that have local user
profiles to the new AD domain. After manually migrating the user
profile
and
joining the new domain, I want to be able to reset the users temporary
password and set the password to expire at next login.

What ends up happening is it resets the AD password, but then the
novell
account becomes disabled or gets "intruder lockout".

This doesn't happen everytime but is very frustrating.

Any assistance would be greatly appreciated.

Thanks!





.

Relevant Pages

  • Re: Disable password policy
    ... So far I've disabled the password policy and unchecked ... I am trying to reset of our user's passwords ... complexity and password history requirements. ... >Disabling the whole GPO or the setting only will both ...
    (microsoft.public.windows.server.sbs)
  • Re: Disable password policy
    ... you find the password policy in the default domain policy. ... Disabling the whole GPO or the setting only will both *not* reset the users ... Regaeds ...
    (microsoft.public.windows.server.sbs)
  • Re: Group Policy being enforced
    ... I believe these settings will stay as set prior to the values before the ... You need to place a value in them, disabling some settings doesn't ... >>> A couple of months ago I enabled a password policy. ... But when I attempt to create a new account it still requires ...
    (microsoft.public.win2000.active_directory)
  • Re: Disable password policy
    ... I wanted to disable the password policy. ... after disabling all the settings disabled the ...
    (microsoft.public.windows.server.sbs)
  • Password Policy Change & It Effect on Password Age limits
    ... When applying a new Password Policy, do the counters for minimum and maximum age of existing passwords get reset? ...
    (microsoft.public.win2000.group_policy)