Link to home
Start Free TrialLog in
Avatar of llarava
llaravaFlag for Afghanistan

asked on

Password Policy Windows 2003

Is there anyway to set up a different password policy for the domain admin users accounts. As far as I know there's only a unique password policy for the domain. Basically I need to force the domain admin accounts to renew /change the password more periodic than the rest of the other domain accounts.

Any suggestion?

Thanks.
Avatar of ryansoto
ryansoto
Flag of United States of America image

You can create a group policy for that group then change the password policy for that new GPO you created.
Ryan, are you sure you can do this? As far as I am aware, you can only have a single GPO with account policies which has precedence, this is defined at the domain.
http://technet2.microsoft.com/windowsserver/en/library/cc8f982e-2e2b-4136-aecc-7494216237231033.mspx?mfr=true

Windows 2008 will allow more granular account policies.
Avatar of llarava

ASKER

mattee76

You are right. This is hole point for  the question as I said in my question "As far as I know there's only a unique password policy for the domain".

Any ideas??
My bad I was reading about 2008 all day.  Correct 2003 only supports policies at the domain level.
There are add ins though (3rd party) that will allow you to 'diversify'

http://www.specopssoft.com/products/specopspasswordpolicy/
You will need a third party password filter, the one that Ryan detailed is quite good.
ASKER CERTIFIED SOLUTION
Avatar of Toni Uranjek
Toni Uranjek
Flag of Slovenia image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
I would rather see that you don't accept my answer at all than to give me C for perfectly good answer.
Yeah thats a bit rough. I dont really get peoples gradings sometimes!