Solved

Group Policy for Windows 2000 Professional computers in a NT domain

Posted on 2004-04-24
5
393 Views
Last Modified: 2013-12-04
I have run a scan of my network and I am trying to correct some discrepancies with machines.  What I need to do is specify the minimum password length under group policy for local machines.  What needs to happen here.  If I had an AD domain this would be easy, but I am NT so please help!
0
Comment
Question by:demonseed73
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
5 Comments
 
LVL 12

Assisted Solution

by:trywaredk
trywaredk earned 200 total points
ID: 10906911
HOW TO: Create Custom Administrative Templates in Windows 2000
http://support.microsoft.com/default.aspx?scid=kb;en-us;323639

Many Regards
Jorgen Malmgren
IT-Supervisor
Denmark

:o) Your brain is like a parachute. It works best when it's open

0
 
LVL 12

Expert Comment

by:trywaredk
ID: 10906916
Using the Group Policy Snap-in Focused on a Remote Computer
http://www.microsoft.com/windows2000/techinfo/reskit/samplechapters/dsec/dsec_pol_dbyy.asp

0
 
LVL 84

Accepted Solution

by:
oBdA earned 200 total points
ID: 10913579
Password complexity is not NT4's strong side. There's a dll that can be installed to enforce some hardcoded settings, but that's about it. Setting the client's local policy using gpedit.msc won't help you very much; this is a local policy, but since your users are domain members, the password complexity needs to be defined and enforced where the change actually occurs: on your PDC.
Have a look at the first link on how to enforce NT4's built-in password complexity.
If you want to be able to define your own settings, have a look at the second link, Anixis' Password Policy Enforcer. Unlike the passfilt.dll, this lets you define different policies for different users or groups.

How to Enable Strong Password Functionality in Windows NT
http://support.microsoft.com/?kbid=161990

Password Policy Enforcer: Overview
http://www.anixis.com/products/ppe/default.htm

Further information:
Enabling Strong Password Functionality in Windows 2000
http://support.microsoft.com/?kbid=225230

Changes Are Not Applied When You Change the Password Policy
http://support.microsoft.com/?kbid=269236
0
 
LVL 13

Assisted Solution

by:ocon827679
ocon827679 earned 100 total points
ID: 10919259
On the Winnt domain controller run User Manager from the Administrator Tools.  I believe that it's the Security option on the toolbar that you need.  From the drop down you pick Account Policies (it's been so long since I've done this, I might be a bit incorrect.)  In this menu you can set a minimum password length and age for the domain.  This will include W2K machines as it is a User policy as opossed to a computer policy.  

If you are just changing the policy for local machines and local users then it's best to use trywaredk's suggestion.  
0
 
LVL 12

Expert Comment

by:trywaredk
ID: 11034902
:o) Glad we could help you - thank you for the points
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

This is a guide to the following problem (not exclusive but here) on Windows: Users need our support and we supporters often use global administrative accounts to do this. Using these accounts safely is a real challenge. Any admin who takes se…
The term "Bad USB" is a buzz word that is usually used when talking about attacks on computer systems that involve USB devices. In this article, I will show what possibilities modern windows systems (win8.x and win10) offer to fight these attacks wi…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

735 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question