Re: Domain Password Policy
- From: Dan <Dan@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Sat, 15 Apr 2006 17:21:02 -0700
Thanks so much, that is what I needed. Yeah, the pc is in a locked room that
acts as an application server. So I guess it is kind of a server, but just
has XP Pro instead of the server software.
I thought the domain policy would override the tick that never expires.
This is good to know so we can create one service account where the password
never expires. Thanks so much for all the help.
This is truly what I wanted to know. Because from what I have heard you cant
set a password policy at the ou level it always had to be the domain level
and I was afraid that the few programs we use to run through windows
scheduler would quit working with the one service account that we use.
So basically set an domain security policy with one account for services and
click do not expire and this truly wont expire with the domain policy.
Thanks so much 1 problem down 1 to go,
Dan
"Lanwench [MVP - Exchange]" wrote:
.
In news:37B32174-612F-4568-96FC-E822ECECB5F1@xxxxxxxxxxxxx,
Dan <Dan@xxxxxxxxxxxxxxxxxxxxxxxxx> typed:
Hello and thanks for your quick response.
I agree we pretty much have one pc that acts as an application server
that handles the scripts. It does require both local pc admin access
and some rights to the server.
No way to stick that on a real server that isn't accessible to users? Eh,
what are you going to do.
So if I understand correctly we can set an account for this pc which
will not be affected by the domain security policy. How would this
work? Don't all accounts get affected by the domain policy.
Yes, but in the account properties in ADUC you can tick the box that
prevents the password from ever expiring.
I
greatly appreciate your help.
HTH.
ThanksDan
"Lanwench [MVP - Exchange]" wrote:
In news:746B1C59-4516-46F1-A490-A86AEDD8E02D@xxxxxxxxxxxxx,
Dan <Dan@xxxxxxxxxxxxxxxxxxxxxxxxx> typed:
Hello Everyone,
I am getting ready to enforce stronger passwords on the domain.
However, we have a lot of automatic scripts/jobs that run depending
on the machine. For instance on my pc I have an access database that
loads and runs through the windows scheduler. However, if my
password changes which it does the program quits running. Is there
away I can prevent this so I can ensure all of our jobs/scripts will
continue to run even if a password is expired or changed due to the
domain password policy.
Thanks
Dan
You can set up separate service accounts, with passwords that don't
expire, if you need to. That said, I'd say that it's best to avoid
running anything like this from your desktops. It would be better to
get everything centralized on your servers.
- References:
- Re: Domain Password Policy
- From: Lanwench [MVP - Exchange]
- Re: Domain Password Policy
- From: Lanwench [MVP - Exchange]
- Re: Domain Password Policy
- Prev by Date: Re: printer sharing
- Next by Date: Re: Server stops responding each 5/6 days
- Previous by thread: Re: Domain Password Policy
- Next by thread: Re: win2k3 WORKGROUP Anonymous Access
- Index(es):
Relevant Pages
|
