Re: 2003 AD Security policy question

From: Roger Abell (mvpNOSpam_at_asu.edu)
Date: 04/27/05

• Next message: Crouchie1998: "Re: "admin" could not make entries in registry ..."
• Previous message: Will: "Weird Group Policy Message"
• In reply to: Steven L Umbach: "Re: 2003 AD Security policy question"
• Next in thread: Steven L Umbach: "Re: 2003 AD Security policy question"
• Reply: Steven L Umbach: "Re: 2003 AD Security policy question"
• Reply: Curious George's Twin: "Re: 2003 AD Security policy question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 27 Apr 2005 00:30:58 -0700

The other alternative is writing or purchasing an alternative
password filter.

-- 
Roger
"Steven L Umbach" <n9rou@n0-spam-for-me-comcast.net> wrote in message
news:avCdnSQDU5UEr_LfRVn-uQ@comcast.com...
> That has not changed for Windows 2003. If you have a need for different
> password policy for a group domain users, then you need another domain. If
> you have a particular group that needs higher security you may want to
look
> into smart cards for that group of users and configure their user accounts
> to require smart card logon.  --- Steve
>
>
> "Curious George's Twin" <shaggy@whoamitoday.net> wrote in message
> news:26Gbe.1309$Hf6.707@fe11.lga...
> > Dear Colleagues:
> >
> > With Windows NT networks (and I believe 2000 as well), I was unable to
set
> > up a stronger password policy for certain groups.
> >
> > My desired result is to put a stronger password policy on one group, but
a
> > weaker one on another.  Specifically, password complexity rules.
> >
> > Is this possible with Windows 2003 active directory enabled networks and
> > those that have 2000 servers in the mix?
> >
> > Thanks,
> >
> > CC
> >
>
>

• Next message: Crouchie1998: "Re: "admin" could not make entries in registry ..."
• Previous message: Will: "Weird Group Policy Message"
• In reply to: Steven L Umbach: "Re: 2003 AD Security policy question"
• Next in thread: Steven L Umbach: "Re: 2003 AD Security policy question"
• Reply: Steven L Umbach: "Re: 2003 AD Security policy question"
• Reply: Curious George's Twin: "Re: 2003 AD Security policy question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: 2003 AD Security policy question ... That has not changed for Windows 2003. ... password policy for a group domain users, ... > up a stronger password policy for certain groups. ... (microsoft.public.win2000.security) Re: Help in implementing a PKI/Smart Card Infrastrucutre ... So your problem is actually buying the hardware (smart cards) and the ... software (Windows CSP)? ... I only use Enterprise Servers in my small business ... (microsoft.public.windows.server.security) Re: Start a service instance for each Terminal Service session ... The service access the smart cards through the resource manager and the ... In Windows XP it seems almost OK without modification. ... service can list the remote smart card reader with SCardListReaders ... the Console Session with session ID 0. ... (microsoft.public.windows.terminal_services) Re: Password policy ... Password policies must be set at the domain level. ... Windows 2003 as well. ... > the password policy, and link it to domain controllers. ... > replicate to all domain computers. ... (microsoft.public.win2000.security) Re: GINA for Smart Card logon ... Are you trying to control what happens when people remove their smart cards after logging on? ... you do know the GINA is gone in Windows Vista/Server 2008, ... > computer may stop at the winlogon desktop and the default desktop may> be ... (microsoft.public.windowsxp.security_admin)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint