3 Strikes Your Out Password Policy

From: Preston Hillensbeck (slightly@datasync.com)
Date: 09/18/02 

To: focus-ms@securityfocus.com
Date: Wed, 18 Sep 2002 14:17:54 -0500 (CDT)
From: "Preston Hillensbeck" <slightly@datasync.com>

Our company recently implemented a policy of 3 wrong passwords and you are
locked out. The question I have is, is there a way to reset the counter
so that if you type in a wrong password, it will reset your invalid attempts
back to 0? What is happenening is that people may type in a password wrong
once, and it keeps on counting down even after they logged in successfully.
We implemented this with Group Policy on our Windows 2000 Domain Controller.
If anyone has any info on this, it would be greatly appreciated. Thanks.

Relevant Pages

  • Re: Errors Opening Network Based Spreadsheets using Excel 97
    ... Windows 2000 sp3 as the domain controller ... use Group Policy settings to turn off SMB ... set the Default Domain Controller policy settings to ...
    (microsoft.public.win2000.security)
  • Re: Folder Redirection: cant find it in the Group Policy Object Editor
    ... a Windows Server 2003 SP1 domain controller, ... controller and 3 on Windows XP (no Folder Redirection or Internet Explorer ... Redirection Policy Processing. ... domain controller GPedit was working against objects in the Active ...
    (microsoft.public.windows.server.general)
  • Re: Domain Controller Security Policy / Group Policy Object HELP!!
    ... I am racking my brain on this problem with a Windows 2003 Standard ... >> Controller Security Policy or the GPO. ... >> Domain Controller Security Policy: Failed to open the Group Policy Object. ... >> Windows cannot find the network path. ...
    (microsoft.public.windows.server.general)
  • Re: Help with GPO problem!! PLEASE!!
    ... > Reposting as we tried in the GPO thread, but after an exhausted attempt, I ... I am racking my brain on this problem with a Windows 2003 Standard ... > Controller Security Policy or the GPO. ... > Domain Controller Security Policy: Failed to open the Group Policy Object. ...
    (microsoft.public.windows.server.active_directory)
  • Re: FOR A SKILLED IT EXPERT - WIN2K SERVER - DOMAIN CONTROLLER
    ... So then the policy is disallowing all login by all users at all machines? ... boots up on cached profile only) The interactive logon problem has applied ... manual security reset. ... If you had not tried the reset we could have pulled you out of this, ...
    (microsoft.public.win2000.security)