How do you do....it? Thread, Password Complexity for Staff Only in Technical; Hi,
We have moved over to Windows 7 this summer, all is going pretty well, but I am struggling a ...
20th August 2012, 11:27 AM #1
- Rep Power
Password Complexity for Staff Only
We have moved over to Windows 7 this summer, all is going pretty well, but I am struggling a little with password complexity at the moment.
We would like to have staff to have more complex passwords, but with 1700 pupils, this is going to be a mess, and I don't really want to hold lessons up getting Year 7's to have complex passwords just yet!
I am at the current stage of just getting passwords to be able to be changed regularly at the moment, with no complexity requirements, but keep hitting the this 'password does not meet length, time or complexity requirements on this domain' error message.
I have set the password policy on both our domain controller servers and workstations to be the same but still no luck and is as follows:
1) Enforce Password history - 0 passwords remembered
2) Maximum Password Age - 0 days
3) Minimum Password Age - 0 days
4) Minimum password length - 0 characters
5) Passwords must meet complexity requirements - Disabled
6) Store passwords using reversible encryption
Am I having problems because of the 0 chars password length limit?
I have seen Angry Technicians post on his website about the specops tool, which looks interesting, but what have others set as the password policy on the workstations/servers/domain and where have you put this in your policy setup?
20th August 2012, 11:43 AM #2
Where are you setting the GPO and is your network operating at Server 2008 level?
Under Server 2003 it could only be done at the highest level, so it's not possible to have different policies.
Server 2008 you put the policy at OU level.. always making sure that a higher level policy does not contradict it.
20th August 2012, 12:14 PM #3
- Rep Power
We are at 2003 level I think, but will double check...
Thanks for the input.
Will get back to you in a bit...
20th August 2012, 01:39 PM #4
- Rep Power
Yes we are at 2003 level. Just went through everything and we have a slight problem in that we have inheritance blocked on our new windows 7 structure, to prevent any old policies from XP filtering down. I have double checked everything and have now cleaned this up. However, the default domain policy does not look like as expected and looks like it has been modified - great! more mess to clean up!
Seems we have some more work to do!
Will report back in a bit!
20th August 2012, 01:43 PM #5
Unless on 2008 you can only have 1 password policy per domain.
By 3rdknight in forum Windows
Last Post: 5th November 2013, 12:15 PM
By sonofsanta in forum How do you do....it?
Last Post: 17th November 2010, 12:01 PM
By powdarrmonkey in forum Windows
Last Post: 14th July 2010, 12:27 PM
By burgemaster in forum Windows Server 2000/2003
Last Post: 11th January 2010, 09:02 AM
By siuko in forum Wireless Networks
Last Post: 14th May 2008, 07:47 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)