Re: Password rotation

From: Hindy (1_at_1.com)
Date: 07/22/03 

Date: Tue, 22 Jul 2003 05:02:59 -0700

Ah, thats what that article said as well. I've never had
any problems with setting this but thats interesting to
know.

It will effect your security in that users could rapidly
change their password 5 times, and set it back to what it
originally was, therefore effectively avoiding changing
their password. This is the main prupose of the minimum
password age setting.

>-----Original Message-----
>Hi Luke,
>
>Remove this part of policy
>
>>Min password age: 1 day.
>
>I had few cases where this was a problem... You can set
it to 0. It doesn't
>do anything about your security...
>
>--
>Mike
>MCSA 2K, MCSE 2K, MCT, ...
>
>"luke" <luke@s-mail.com> wrote in message
>news:e24bb0a1.0307220117.4c8e8a15@posting.google.com...
>> Hi All,
>>
>> I recently moved all domain users over to password
rotation over 90
>> days. What is happening now is that the date comes up
for the user to
>> change, they are presented with a login screen with 3
fields - old
>> password - new - confirm new. They place their old
password in - and
>> make up and confirm a new one (not the same password).
Yet a message
>> is returned saying something like the password must
exceed 8
>> characters and an old one cannot be used again. Yet
they are using a
>> completley new password which is well over 8
characters long.
>>
>> This is the domain security policy
>>
>> Enforce PassWord History: 5 passwords
remembered.
>> Max password age: 90 days.
>> Min password age: 1 day.
>> Min password length: 8 Characters.
>> Pssword must meet complexity: Disabled.
>> Store Pssword using reverse encrypt: Disabled.
>>
>> Can't seem to figure this. Anyone got any ideas???
>>
>> Regards,
>>
>> Luke
>
>
>.
>

Relevant Pages