Home page logo

basics logo Security Basics mailing list archives

RE: Changing the domain password policy
From: "Huang, John, GCM" <John.Huang () rbsgc com>
Date: Fri, 2 Feb 2007 11:53:13 -0500

That's correct. Setting pw complexity only affect new password changes.
You can still circumvent the policy but manually changing the account PW
in AD management console. 

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of Gary Collis
Sent: Thursday, February 01, 2007 3:47 PM
To: security-basics () lists securityfocus com
Subject: Changing the domain password policy

Hi All,

I wish to amend my windows domain policy to include passowrd complexity
and minimum length. However I have a bunch of service accounts, of which
I do not know all. These passswords are set in AD to not expire. Am I
right in thinking that the changes to the domain password policy will
not effect the accounts that have this attribute set in AD, until these
passwords are actually changed?

How do other people deal with service accounts and their adherence to
domain password policys?



This e-mail is intended only for the addressee named above.
As this e-mail may contain confidential or privileged information,
if you are not the named addressee, you are not authorized
to retain, read, copy or disseminate this message or any part of


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]