kplais1
asked on
Server Enterprise, 2003, SP2, Active Directory/Password Problems
I use a mixed mode Active Directory
There is currently a Password Policy in place for Password Age, Length, Complexity, and History
I HAVE TO, change a users password back to what it originally was. (Long Story). I have turned the policy(via GPO) off, and I still can not reset this password back to what it was.
I have a 10 CITY MPLS Network, with 10 Domain Controllers. Is replication and Propagation hampering me?
There is currently a Password Policy in place for Password Age, Length, Complexity, and History
I HAVE TO, change a users password back to what it originally was. (Long Story). I have turned the policy(via GPO) off, and I still can not reset this password back to what it was.
I have a 10 CITY MPLS Network, with 10 Domain Controllers. Is replication and Propagation hampering me?
To make sure the domain controllers replicate,
1) Open Active Directory Sites and Services
2) Navigate to Sites, Default-First-Site-Name, Servers, SERVIDOR, NTDS Settings
3) in the right side, right click <automatically generated>, click Replicate Now.
This assumes a default site structure. You can also check event logs to see if replication has taken place before testing your new settings... replication will usually happen every 15 to 20 minutes.
Now, to make sure the client computer has received the GP changes, you can simply reboot it, or if XP Pro, run gpupdate /force in a command window.
1) Open Active Directory Sites and Services
2) Navigate to Sites, Default-First-Site-Name, Servers, SERVIDOR, NTDS Settings
3) in the right side, right click <automatically generated>, click Replicate Now.
This assumes a default site structure. You can also check event logs to see if replication has taken place before testing your new settings... replication will usually happen every 15 to 20 minutes.
Now, to make sure the client computer has received the GP changes, you can simply reboot it, or if XP Pro, run gpupdate /force in a command window.
ASKER
Thanks, but why when I log into Domain Controller, and go to Domain Security Policy, It says I do not have access. I am in the Domain Admin Group, Enterprise Admin Group. So I can't access that on the DC. I also tried in other cities and can't get to it either.
i think you are domain admin of a different domain and you try to access a policy of another domain..you better add yourself to be domain domain in your root domain.....
ASKER
We are only a one domain shop. I am a domain admin, on the correct domain.
Here is the Error again.
whenever i tried to open the 'Domain Controller Security Policy' or the 'Domain Security Policy', I'll get this error message saying, 'Failed to open the Group Policy Object. You may not have appropriate rights'. And under the details information, it shows 'The system cannot find the path specified'
Here is the Error again.
whenever i tried to open the 'Domain Controller Security Policy' or the 'Domain Security Policy', I'll get this error message saying, 'Failed to open the Group Policy Object. You may not have appropriate rights'. And under the details information, it shows 'The system cannot find the path specified'
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
2. Security Settings > Account Policies > Password Policy.
3. Right-click on Minimum password length in the right pane. Click Properties from the context menu.
4. Do not remove the check from the Define this policy setting checkbox! Enter a new minimum password length. Entering a Zero (0) will remove the password requirement. Click the OK button.
5. Double-click on Passwords must meet complexity requirements in the right pane.
6. Do not remove the check from the Define this policy setting checkbox! Select the Disabled option.(This will allow simpler passwords.) Click the OK button.
7. Close the Default Domain Security Settings window.
8. Click Start > Run > cmd {enter}
9. Type gpupdate /force {enter}
10. Type exit {enter}