RE: active directory password policy

From: Sullivan Tim P (tim.sullivan_at_nativemode.com)
Date: 02/09/05

  • Next message: Thaddeus McNamara: "RE: Password Protected Screen Saver and Administrative Password"
    Date: Wed, 9 Feb 2005 00:33:55 -0700
    To: "William Stegman" <stegmanw@comcast.net>, <focus-ms@securityfocus.com>
    
    

    Why not write a script that runs once a night that emails the user if
    they have not changed their password in X number of days?

    ___________________________
    Tim Sullivan
    Nativemode Technologies
    (623) 910-4700
    tim@nativemode.com

    -----Original Message-----
    From: William Stegman [mailto:stegmanw@comcast.net]
    Sent: Friday, February 04, 2005 15:10 PM
    To: focus-ms@securityfocus.com
    Subject: active directory password policy

    Does anyone have any experience with remote users who do not login to
    the domain on a regular basis or at all, and have a password expiration
    policy in effect? We can't seem to come up with a good plan to handle
    these users. They only occassionally access domain resources such as
    webmail via the Internet or an internal website to do timesheets via
    vpn, and will not have the luxury of logging on to a machine connected
    to our LAN and getting the warning about soon to expire passwords. If
    our policy dictates passwords expire every 90 days, how can we avoid the
    inevitable calls regarding password resets?

    thx

    /William Stegman - Network Administrator///

    TransCore - Hummelstownd

    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------


  • Next message: Thaddeus McNamara: "RE: Password Protected Screen Saver and Administrative Password"