Solved

Forcing Strong Passwords, will those already

Posted on 2009-07-16
4
267 Views
Last Modified: 2013-12-04
I'm currently in the midst of chaning the password policy to enforce strong passwords on my Windows SBS Server 2008 Premium network. I'm familiar with the steps to implement it. My question is what happens to those users that already have a strong password in place? Will they also be forced to change their passwords?
0
Comment
Question by:Danstr1
4 Comments
 
LVL 7

Expert Comment

by:kumarnirmal
ID: 24869149
Hi,

It won't affect the users already have the password, it will applied only when create new user and existing users try to change the password.

0
 
LVL 9

Accepted Solution

by:
Oliver-P earned 250 total points
ID: 24890996
Hello,

I think your GPO won't affect users who already have a strong password in accordance with your policy. For those users who have weak passwords, they will have to change them in accordance with your policy as soon as they logon after you apply the GPO (IIRC).

Note: you should inform your users that a new security practice will be deployed and explain them how to create strong passwords because most of them will usually have no clue about that.
0
 

Author Comment

by:Danstr1
ID: 24894703
I did find that those with strong passwords did not have to change their passwords while those with weak passwords were immediately forced to change theirs'.
0
 
LVL 3

Expert Comment

by:dmoltrup
ID: 24894756
If you happen to have any users that are not allowed to change their passwords, you will have to change them instead. I have played with password policies and our mobile users were on the phone extremely quickly!
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
Synchronize a new Active Directory domain with an existing Office 365 tenant
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now