• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1904
  • Last Modified:

windows 2000 server - Password policy

Hi,

Currently I am trying to look at implementing strong passwords on our network and found that a group policy can help by allowing you to set minimum password length.

Ideally I would like to have some kind of policy that will only allow passwords to have 6 or more characters and contain a number or symbol. Is this possible to set up using group policy? - if so can you tell me how, but bear in mind that I'm fairly new to active directory!


Many thanks,

Si.
0
BigSi
Asked:
BigSi
  • 2
  • 2
1 Solution
 
sirbountyCommented:
0
 
RohitmrCommented:

Follow this path.

Administrative Tools - Domain Controller Security Policy - Security Policies - Account Policies - Password Policies - Password must meet Complexity Requirements
0
 
BigSiAuthor Commented:
Thanks sirbounty, allthough I'm still having trouble going through the refrences you gave me - I seem to be going round in circles at the mo on MSN knowedge base :(

One of the articles you referenced mentions a file called Passfilt.dll.

This file is apparently used to set password complexity. In the articles I have come accross so far it mentions NT4 not windows 2000 server.

I ran a quick search for the passfilt.dll file hoping to find it somewhere on the server, but it came back with nothing

Do I need to put this file in my system32 directory, modify my registry and then it should all work?

- Where can I find this file?

0
 
sirbountyCommented:

>>>>
If this policy is enabled, passwords must meet the following minimum requirements:
 Not contain all or part of the user's account name
 Be at least six characters in length
 Contain characters from three of the following four categories:
  English uppercase characters (A through Z)
  English lowercase characters (a through z)
  Base 10 digits (0 through 9)
  Nonalphanumeric characters (e.g., !, $, #, %)
Complexity requirements are enforced when passwords are changed or created.
<<<<

Although I'm not aware of any way to customize this in 2k, the admin policy help indicates:  "To create custom password filters, see the Microsoft Platform Software Development Kit and the Microsoft Technet." - though I didn't find anything on Technet in that regards either. . .
0
 
BigSiAuthor Commented:
I totally forgot about this post - managed to sort this out as I enabled the Complexity requirments of my Root policy in AD which worked!

Cheers,
si.
0

Featured Post

SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now