Fw: Setting Account Lockout Policies with a NT PDC
From: Jason Radtke (crd427@hotmail.com)Date: 07/29/02
- Previous message: Majid Tahir: "RE: Securing laptops"
- Maybe in reply to: Jason Radtke: "Setting Account Lockout Policies with a NT PDC"
- Next in thread: H C: "Re: Fw: Setting Account Lockout Policies with a NT PDC"
- Reply: H C: "Re: Fw: Setting Account Lockout Policies with a NT PDC"
- Reply: Laura A. Robinson: "Re: Setting Account Lockout Policies with a NT PDC"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Jason Radtke" <crd427@hotmail.com> To: <keydet89@yahoo.com> Date: Mon, 29 Jul 2002 13:35:35 -0400
I apologize for not being clear. I have already configured the account
lockout policies for the domain user accounts but I want to set the
workstation local accounts (the local admin account is the only active local
account) to specific lockout policies (account lockout duration, account
lockout threshold and reset account lockout counter) without having to go to
each computer to configure.
If the admin account is locked out then it is suppose to only allow an
administrator infront of the computer to logon (no network attempts via the
local admin account).
> -----Original Message-----
> From: H C [mailto:keydet89@yahoo.com]
> Sent: Friday, July 26, 2002 5:56 PM
> To: Jason Radtke; focus-ms@securityfocus.com
> Subject: Re: Setting Account Lockout Policies with a NT PDC
>
>
> Jason,
>
> After reading through your post, I'm having some
> trouble seeing where you're finding the difficulty,
> exactly. When you connect the Win2K client to the the
> NT PDC, you seem to be thinking that the settings for
> the domain account will be ignored simply b/c the
> client is Win2K. This is NOT the case.
>
> If you want to set the account lockout policies for
> the NT PDC, simply go to the PDC, open User Manager
> for Domains, click Policies, then Accounts. Then set
> your account lockout settings. Yes, this can also be
> done via a variety of scripts.
>
> Changing the local Admin passwords on the clients is
> also pretty simple w/ a Perl script that uses the
> Win32::Lanman module.
>
> --- Jason Radtke <crd427@hotmail.com> wrote:
> >
> >
> > I am looking for assistance in changing the account
> > lockout policy
> > settings for my end users.
> >
> > PDC is a Windows NT Server
> > 80% workstations Windows 2000
> > 20% workstations Windows NT4 (at the end of a
> > migration stage to Windows
> > 2000, so I am not worried as much about changing the
> > policies on the nt4
> > workstations)
> >
> > I came across a thread with a tool called
> > "AccountPolicy 0.2" but it
> > appeared to be for a complete Windows NT4
> > environment
> >
> > I also read on a previous thread that you can change
> > the workstation local
> > admin passwords via a script. Is this able to be
> > done with a NT Server to
> > Windows 2000 workstations and if so can someone
> > point me in the right
> > direction.
> >
> > Thanks in Advance
>
>
> __________________________________________________
> Do You Yahoo!?
> Yahoo! Health - Feel better, live better
> http://health.yahoo.com
>
- Previous message: Majid Tahir: "RE: Securing laptops"
- Maybe in reply to: Jason Radtke: "Setting Account Lockout Policies with a NT PDC"
- Next in thread: H C: "Re: Fw: Setting Account Lockout Policies with a NT PDC"
- Reply: H C: "Re: Fw: Setting Account Lockout Policies with a NT PDC"
- Reply: Laura A. Robinson: "Re: Setting Account Lockout Policies with a NT PDC"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
