Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


Applying a password policy to an Organisational Unit on Windows 2000 Server

Posted on 2005-04-10
Medium Priority
Last Modified: 2010-04-14
Hi friends,

I've put one of my users into a new Organisational Unit on my Server using Active Directory. I then editied the Group Policy to change the Account Lockout setting to make 1 failed login attempt lockout the account for 30 minutes.

However, it doesn't work!

What could I be doing wrong?


Question by:LeeGolding
  • 3
LVL 35

Expert Comment

by:Nirmal Sharma
ID: 13750431
It won't work. Account Policies and Kerberos Policies are only applied from Default Domain Policy.
LVL 35

Accepted Solution

Nirmal Sharma earned 700 total points
ID: 13750438
For domain accounts, there can be only one account policy. The account policy must be defined in the Default Domain policy and is enforced by the domain controllers that make up the domain. A domain controller always obtains the account policy from the Default Domain Policy Group Policy object, even if there is a different account policy applied to the organizational unit that contains the domain controller. By default, workstations and servers joined to a domain (such as member computers) will also receive the same account policy for their local accounts. However, local account policies can be different from the domain account policy, such as when you define an account policy specifically for the local accounts.
***End Quote

Ref: - http://www.microsoft.com/resources/documentation/windows/xp/all/proddocs/en-us/sag_sceacctpols.mspx


Author Comment

ID: 13750911
Ok. Thank you.

LVL 35

Expert Comment

by:Nirmal Sharma
ID: 13751047

Featured Post

Get expert help—faster!

Need expert help—fast? Use the Help Bell for personalized assistance getting answers to your important questions.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
A Case Study of using the Windows API to provide RS232 communications capability in Access without the use of Active-X controls.
Screencast - Getting to Know the Pipeline
Enter Foreign and Special Characters Enter characters you can't find on a keyboard using its ASCII code ... and learn how to make a handy reference for yourself using Excel ~ Use these codes in any Windows application! ... whether it is a Micr…
Suggested Courses
Course of the Month13 days, 7 hours left to enroll

578 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question