Re: Win XP Pro Reset password error!

From: Dmitry Korolyov (d__k_at_nospamformorons.mail.ru)
Date: 09/10/03 

Date: Thu, 11 Sep 2003 01:18:10 +0400

Do you have more than one DC? Because the last problem appears to be exist
because of some replication delay (you didn't wait enough after
re-joining?).

Just to confirm: when your workstation is joined into domain, you can see
minimum 4 chars requirement for local password policy in its local security
policy, and yet can create local accounts with less than 4 chars passwords?

Do you have password complexity enforced? Last I remember is that with
password complexity enforced, minimum password length is set to the higher
value of two: 6 characters or the value defined in "minimum password length"
option. Which means, you password will be at least 6 chars no matter what.

You can also use rsop.msc for troubleshooting GP-related stuff. 

--
Dmitry Korolyov
d__k@nospamformorons.mail.ru
To e-mail me, remove "nospamformorons"
from the address.
"WJ" <JohnWebb@Yahoo.Com> wrote in message
news:ues1Y89dDHA.556@TK2MSFTNGP11.phx.gbl...
> "Dmitry Korolyov" <d__k@nospamformorons.mail.ru> wrote in message
> news:%23FNCBs5dDHA.1632@TK2MSFTNGP12.phx.gbl...
> > Joe,
> >
> > actually all I asked is to launch local security policy applet (yes,
while
> > joined to the domain) and look which password settings are displayed
> there.
> > Correct, they should be read-only (enforced by domain policy), but you
> > should be able to read them and verify that password length settings are
> > correct.
> >
>
> Yes. They are. Another problem popped up today (likely a bug in W2003) is
> that when I disjoined the membership and rejoined the same domain later,
It
> gave me a "Domain not found" red-x. To get around this, I had to delete
the
> computer (xp client) from the server and also delete the forward and
> reversed records for the client computer from the domain DNS before
> rejoining the same workstation.
>
> John Webb
>
>

Relevant Pages

  • Re: Password Change Policy
    ... when you implement the policy. ... Maximum password age: Not Defined ... Minimum password age: Not Defined ... the Local Security policies password settings I set the Domain Policy ...
    (microsoft.public.windows.server.active_directory)
  • RE: Betr.: Minimum password requirements
    ... This policy enables administrators to enhance security by ensuring that old ... To maintain the effectiveness of the password history, ... passwords to be changed immediately when you configure the Minimum password ... default setting does not follow this recommendation, ...
    (Security-Basics)
  • Re: Local GPO
    ... When you look at the local security policy on a member what you see are the ... Preferences are settings in the registry that are not ... > to use the Default Domain Controllers Policy linked to the Domain ...
    (microsoft.public.windows.group_policy)
  • Re: HELP!!! Unable to logon to Server 2000
    ... Any domain or Organizational Unit Group Policy that is enabled will override ... Local Security Policy defined settings assuming everything is configured ... Security Policy and that will override the Local Security Policy for those ... I would first double check the Domain Controller Security ...
    (microsoft.public.win2000.security)
  • Re: XP Home - Cant Audit - no Local Security Policy
    ... I do not use Home edition. ... policy interface is not just excluded but also prevented from ... auditing policy set/adjusted. ... My problem is it refers to Local Security Policy. ...
    (microsoft.public.windowsxp.security_admin)