password policy

[TTEL]

Windows 2000 domain - We are planning to tighten our password policy via GPO which is currently enforced at domain level. For example we will be enforcing complexity.

How will this affect current users?
For example if a user currently has a password that does not meet the new complexity requirements will his account become locked and need admin intervention or will he be asked to change his password next time he logs on?

Any other tips, scenarios, etc appreciated.

 

[monsterjta]

If you enforce complexity now, your users will not be effected until the next time they change their password (either by choice or password expiration). All you need to do is inform your users of the new policy, with explicit and detailed instructions on the new complexity requirements.

Even then, you will receive calls. Because people not required to use complexity are usually VERY complexed when they need to come up with a strong password!

Hope This Helps,

Good Luck!