asked on

GPO "Small Business Server Domain Password Policy" not applying

I have a SBS 2003 and Terminal Server running Win Svr 2003 and having issues with the above GPO.

I have removed Authenticated Users from Security Filtering and added Security Group "TST GPO Password Policy" where I have a User in this group.

When I log on with User to the TS that is in this SG, and run gpupdate /force and then a gpresult the GPO is showing as:
Small Business Server Domain Password Policy
Filtering: Not Applied (Empty)

The User is apart of the SG, the GPO is enabled and applied to root of domain and all inheritance is not blocked.

Flipp

ASKER

Additional info I have found out, but still no solid answer:
1. You can only have ONE Password Policy in 2003
2. Password Policy GPO settings are Computer, but my SG created only contains User objects

?????

Is it possible to have a password policy which is applied to a subset of users?

SOLUTION

Shreedhar Ette

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

ASKER CERTIFIED SOLUTION

Krzysztof Pytko

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

Flipp

ASKER

I would like to test only pushing out Password Policy to a group of users - how would I do this?

Krzysztof Pytko

in 2003 it is not possible at all, sorry. To be able manage this way, you need 2008 (SBS or normal edition)

Flipp

ASKER

Then why does SBS 2003 add a GPO called 'Small Business Server Domain Password Policy' if you can not use it at all?

I am hearing that the only way to set a PP in SBS 2003 is using the Default Domain Policy.

GPO &quot;Small Business Server Domain Password Policy&quot; not applying

GPO "Small Business Server Domain Password Policy" not applying