Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations dencom on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Password Policy- HOW??

Status
Not open for further replies.
bran2235

bran2235

IS-IT--Management
Feb 13, 2002
703
US
Hello everyone...
I have been instructed to implement a password policy for my Domain. Here's what I have:

-Single Domain
-Many OUs

It was my understanding that password policies are DOMAIN WIDE- right? Upon doing a little reading, it seems that this might not be the case... (help!)?

My instructions are pretty simple... EVERYONE has the same password policy... should be easy, right? Where should I implement this (Default Domain policy? Create a New GPO at the Domain Level?, Create new GPO at each OU?), etc..

Any help is greatly appreciated!

Thanks,
Brandon
 
Sort by date Sort by votes
Password policies only work from the Default Domain Policy. Its an all or nothing kind of thing.

RoadKi11
 
Upvote 0 Downvote
Brandon,

Password policy in Windows 2000 is only implemented at the domain level. Edit the Default Domain Policy to set the policy. Password policies are the only policy elements that I would recommend you set in the Default Domain Policy.

To edit the policy, right click your domain name in AD Users & Computers. Choose properties. Click the GPO tab.

Edit the Default Dompain Policy.

navigate to

Computer Configuration
Windows Settings
Security Settings
Account Policies
Password Policy

I hope you find this post helpful.

Regards,

Mark

Check out my scripting solutions at
Work SMARTER not HARDER. The Spider's Parlor's Admin Script Pack is a collection of Administrative scripts designed to make IT Administration easier! Save time, get more work done, get the Admin Script Pack.
 
Upvote 0 Downvote
Ok, thank you both!!!!
Question: We aren't technically a 2000 Domain (we are 2003- does this make any difference?)..?
 
Upvote 0 Downvote
You should post in the 2003 forum inthe future then Brandon. The only difference is you will want to use GPMC to access your policy. The location of the settings within the policy remains the same.

I hope you find this post helpful.

Regards,

Mark

Check out my scripting solutions at
Work SMARTER not HARDER. The Spider's Parlor's Admin Script Pack is a collection of Administrative scripts designed to make IT Administration easier! Save time, get more work done, get the Admin Script Pack.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Mohamed-IT
  • Locked
  • Question
Windows server 2019 password locked
Replies
1
Views
253
strongm
strongm
penguinroundup
  • Locked
  • Question
programmatically delete all saved passwords for IE for any user
Replies
0
Views
282
penguinroundup
penguinroundup
TECHMAN007
  • Locked
  • Question
RD Web Password Change
Replies
0
Views
197
TECHMAN007
TECHMAN007
tviman
  • Locked
  • Question
How to restrict RDP users to the desktop 2
Replies
13
Views
533
strongm
strongm
rrmcguire
  • Locked
  • Question
group policy to set dns
Replies
2
Views
366
rrmcguire
rrmcguire

Part and Inventory Search

Sponsor

Back
Top