Account Policy OU settings
Posted on 2007-08-09
I asked a similar question once before and I'd like some further assistance. From what I've been told you cannot assign account lockout policies at an OU level, only at the domain level. I'd like to have 2 different account lockout policies, 1 after 4 attempts and 1 after 16 invalid attempts. If i set the domain policy as not configured, can't I just create 2 separate policies and apply them to my OU's as needed?
If this is not true can someone please direct me to a document where Microsoft clearly states this is not a configurable option?