Unlinking security policy

Toggle sidebar Toggle sidebar
G

gary

Distinguished
Dec 31, 2007
1,052
0
19,280
Archived from groups: microsoft.public.win2000.active_directory (More info?)

Hello,

I'm currently playing with security policy in test environment.
I created test sec. policy and link it to domain object, default domain
policy hasn't been changed in any way.
New settings worked just fine: password length and complexity, account
lockout etc.
I tried to unlink sec. policy just to be sure that I can roll back to
initial state when only default domain policy exist. After unlinking gpo all
sec settings still remain active -- I should use complex and long
passwords,lockout setting etc, it looks like somewhere link is still exists.
I will be very grateful for any help,
Thanks,
Gary.
 
G

Guest

Guest
Archived from groups: microsoft.public.win2000.active_directory (More info?)

Hi Gary

Security policies tend to be "tattood" into the registry when policy
applies. This is different to .ADM (Administrative) based policy where the
settings can be removed by removing the GPO. To undo the settings you've
configured, you need to implement a new security policy that reverses them.

Kind regards
--
Mark Renoden [MSFT]
Windows Platform Support Team
Email: markreno@online.microsoft.com

Please note you'll need to strip ".online" from my email address to email
me; I'll post a response back to the group.

This posting is provided "AS IS" with no warranties, and confers no rights.

"Gary" <Gary@discussions.microsoft.com> wrote in message
news:5201278D-E2A7-4C6D-8101-558C268752A2@microsoft.com...
> Hello,
>
> I'm currently playing with security policy in test environment.
> I created test sec. policy and link it to domain object, default domain
> policy hasn't been changed in any way.
> New settings worked just fine: password length and complexity, account
> lockout etc.
> I tried to unlink sec. policy just to be sure that I can roll back to
> initial state when only default domain policy exist. After unlinking gpo
> all
> sec settings still remain active -- I should use complex and long
> passwords,lockout setting etc, it looks like somewhere link is still
> exists.
> I will be very grateful for any help,
> Thanks,
> Gary.
 
You must log in or register to reply here.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom