Re: Password Policies
From: Danny Sanders (Danny.Sanders_at_NO-SPAMcpcmed.org)
Date: 06/09/05
- Next message: Ferdie: "Re: Dump Domain Admins group to text?"
- Previous message: Rene Heroux: "Password Policies"
- In reply to: Rene Heroux: "Password Policies"
- Next in thread: Joe Richards [MVP]: "Re: Password Policies"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 9 Jun 2005 14:19:20 -0600
Account policies are one to a domain. Account policies applied at the OU
level only take affect when the user logs onto a computer in that OU
locally.
On a domain with information sensitive enough to require "strong" passwords,
setting some users with "simple" password amounts to the domain admin
creating a security hole.
Differing password requirements is one major reason for creating another
domain.
hth
DDS W 2k MVP MCSE
"Rene Heroux" <ReneHeroux@discussions.microsoft.com> wrote in message
news:FE9290CF-5D8D-47B5-ABC1-5F56D31C7E72@microsoft.com...
> I've organized my Active Directory into various OUs, and one of them is
> called Remote Users.
>
> If I create a GPO for this OU and check the Block Policy Inheritance
> checkbox, would this mean that the computers in the Remote Users OU would
> be
> excluded from the sitewide Password Policy rules as defined in the Default
> Domain Policy?
>
> I'm just trying to figure out someway around this restriction... as most
> of
> you probably know salesmen are hard enough to deal with on a day-to-day
> basis
> without giving them yet another task to do. (And yeah, it should be easy
> enough but you should see some of the calls I get sometimes, heh.)
- Next message: Ferdie: "Re: Dump Domain Admins group to text?"
- Previous message: Rene Heroux: "Password Policies"
- In reply to: Rene Heroux: "Password Policies"
- Next in thread: Joe Richards [MVP]: "Re: Password Policies"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
