windows 2000 server - Password policy

Hi,

Currently I am trying to look at implementing strong passwords on our network and found that a group policy can help by allowing you to set minimum password length.

Ideally I would like to have some kind of policy that will only allow passwords to have 6 or more characters and contain a number or symbol. Is this possible to set up using group policy? - if so can you tell me how, but bear in mind that I'm fairly new to active directory!


Many thanks,

Si.
LVL 2
BigSiAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

sirbountyCommented:
0
RohitmrCommented:

Follow this path.

Administrative Tools - Domain Controller Security Policy - Security Policies - Account Policies - Password Policies - Password must meet Complexity Requirements
0
BigSiAuthor Commented:
Thanks sirbounty, allthough I'm still having trouble going through the refrences you gave me - I seem to be going round in circles at the mo on MSN knowedge base :(

One of the articles you referenced mentions a file called Passfilt.dll.

This file is apparently used to set password complexity. In the articles I have come accross so far it mentions NT4 not windows 2000 server.

I ran a quick search for the passfilt.dll file hoping to find it somewhere on the server, but it came back with nothing

Do I need to put this file in my system32 directory, modify my registry and then it should all work?

- Where can I find this file?

0
sirbountyCommented:

>>>>
If this policy is enabled, passwords must meet the following minimum requirements:
 Not contain all or part of the user's account name
 Be at least six characters in length
 Contain characters from three of the following four categories:
  English uppercase characters (A through Z)
  English lowercase characters (a through z)
  Base 10 digits (0 through 9)
  Nonalphanumeric characters (e.g., !, $, #, %)
Complexity requirements are enforced when passwords are changed or created.
<<<<

Although I'm not aware of any way to customize this in 2k, the admin policy help indicates:  "To create custom password filters, see the Microsoft Platform Software Development Kit and the Microsoft Technet." - though I didn't find anything on Technet in that regards either. . .
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
BigSiAuthor Commented:
I totally forgot about this post - managed to sort this out as I enabled the Complexity requirments of my Root policy in AD which worked!

Cheers,
si.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
OS Security

From novice to tech pro — start learning today.