Forcing Strong Passwords, will those already

Posted on 2009-07-16
Medium Priority
Last Modified: 2013-12-04
I'm currently in the midst of chaning the password policy to enforce strong passwords on my Windows SBS Server 2008 Premium network. I'm familiar with the steps to implement it. My question is what happens to those users that already have a strong password in place? Will they also be forced to change their passwords?
Question by:Danstr1

Expert Comment

ID: 24869149

It won't affect the users already have the password, it will applied only when create new user and existing users try to change the password.


Accepted Solution

Oliver-P earned 1000 total points
ID: 24890996

I think your GPO won't affect users who already have a strong password in accordance with your policy. For those users who have weak passwords, they will have to change them in accordance with your policy as soon as they logon after you apply the GPO (IIRC).

Note: you should inform your users that a new security practice will be deployed and explain them how to create strong passwords because most of them will usually have no clue about that.

Author Comment

ID: 24894703
I did find that those with strong passwords did not have to change their passwords while those with weak passwords were immediately forced to change theirs'.

Expert Comment

ID: 24894756
If you happen to have any users that are not allowed to change their passwords, you will have to change them instead. I have played with password policies and our mobile users were on the phone extremely quickly!

Featured Post

WEBINAR: GDPR Implemented - Tips & Lessons Learned

Join the WatchGuard team on Thursday, March 29th as we recount some valuable lessons learned in weighing the needs of a business against the new regulatory environment, look ahead at the two months left before implementation, and help you understand the steps you can take today!

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

The article explains the process to deploy a Self-Service password reset portal I developed a few years ago. Hopefully, it will prove useful to someone.  Any comments, bug reports etc. are welcome...
There’s hardly a doubt that Business Communication is indispensable for both enterprises and small businesses, and if there is an email system outage owing to Exchange server failure, it definitely results in loss of productivity.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

621 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question