Store password using reversible encryption for all users in the domain enabled
Posted on 2007-03-29
It has recently been discovered that the Password Policy option "Store password using reversible encryption for all users in the domain" is currently enabled.
We have confirmed that there are no systems within our infrastructure that require this feature. Knowing this, we would like to harden the password policy and disable this feature.
Question: If we go ahead and disable it, will users be affected in any way, e.g., users required to change password, etc.
Thanks for any help!