Sign in with
Sign up | Sign in
Your question

Password security policy

Tags:
  • Policy
  • Security
  • Microsoft
  • Windows
Last response: in Windows 2000/NT
Share
June 22, 2005 1:18:44 PM

Archived from groups: microsoft.public.win2000.group_policy (More info?)

Hello,


Currently, we have a password policy defined at the domain level. We are
trying to impose tighter password policy for a group of users, what would be
the best and easiest way to do so? thank you in advance. (w2k sp4)

More about : password security policy

Anonymous
a b 8 Security
June 22, 2005 1:18:45 PM

Archived from groups: microsoft.public.win2000.group_policy (More info?)

We are
> trying to impose tighter password policy for a group of users, what would
> be the best and easiest way to do so? thank you in advance. (w2k sp4)

Create a new domain. Differing account policies is one determining factor as
to whether to create another domain or not.
You can have only one account policy per domain. Creating a password policy
on an OU will have no affect when logging onto the domain. Account policies
applied at the OU level only take affect when logging in locally on a
computer in the OU the account policy is applied to.

If the domain has sensitive enough information for a tighter password policy
not applying that password policy to the entire domain amounts to the admin
creating a security hole.


hth
DDS W 2k MVP MCSE

"Henry" <Henry@fake.com> wrote in message
news:uw1dNVzdFHA.3488@tk2msftngp13.phx.gbl...
> Hello,
>
>
> Currently, we have a password policy defined at the domain level. We are
> trying to impose tighter password policy for a group of users, what would
> be the best and easiest way to do so? thank you in advance. (w2k sp4)
>
June 22, 2005 2:18:30 PM

Archived from groups: microsoft.public.win2000.group_policy (More info?)

Thanks. DOH, it's not what I expected!


"Danny Sanders" <Danny.Sanders@NO-SPAMcpcmed.org> wrote in message
news:uKTSCozdFHA.2500@TK2MSFTNGP10.phx.gbl...
> We are
>> trying to impose tighter password policy for a group of users, what would
>> be the best and easiest way to do so? thank you in advance. (w2k sp4)
>
> Create a new domain. Differing account policies is one determining factor
> as to whether to create another domain or not.
> You can have only one account policy per domain. Creating a password
> policy on an OU will have no affect when logging onto the domain. Account
> policies applied at the OU level only take affect when logging in locally
> on a computer in the OU the account policy is applied to.
>
> If the domain has sensitive enough information for a tighter password
> policy not applying that password policy to the entire domain amounts to
> the admin creating a security hole.
>
>
> hth
> DDS W 2k MVP MCSE
>
> "Henry" <Henry@fake.com> wrote in message
> news:uw1dNVzdFHA.3488@tk2msftngp13.phx.gbl...
>> Hello,
>>
>>
>> Currently, we have a password policy defined at the domain level. We are
>> trying to impose tighter password policy for a group of users, what would
>> be the best and easiest way to do so? thank you in advance. (w2k sp4)
>>
>
>
!