Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Domain Controller Account Policy

Posted on 2011-02-17
6
Medium Priority
?
952 Views
Last Modified: 2012-05-11
We have applied Password Policy on Domain Level. But when we log into (as domain administrator) Domain Controller and run RSOP on that Domain Controller we are unable to see the Account Policies which has been configured. But if we run "Net Accounts" the information comes up fine.Please explain.
0
Comment
Question by:Neo_78
6 Comments
 
LVL 6

Expert Comment

by:nipponsoul
ID: 34914213
RSOP results against the PCs showing local settings only even though the PCs are logging into the domain. That's why you see different results with Net Accounts.
0
 
LVL 9

Expert Comment

by:Chev_PCN
ID: 34914487
@NipponSoul: Not quite - the whole point of RSOP is to show the end result of policies applied to a machine, user, or machine/user combination. It will show both local and AD policies.
The RSOP may not show the GPO settings under your test conditions as the GPO may not apply to either the domain admin or DC.
At what level is this policy?
0
 
LVL 17

Expert Comment

by:Premkumar Yogeswaran
ID: 34914535
Hi,

In the group policy setting make sure the "domain admin" not applied with deny permission in "Apply group policy"

http://www.windowsnetworking.com/articles_tutorials/Group-Policy-Security-Filtering.html

Check this link for GP security ffiltering..!

Regards,
Prem
0
Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

 

Author Comment

by:Neo_78
ID: 34914538
Password Policy has been applied at Domain Level.
0
 

Accepted Solution

by:
Neo_78 earned 0 total points
ID: 35753588
As there is no reply since a long time please close
0
 

Author Closing Comment

by:Neo_78
ID: 35783727
As no reply we are closing
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
How to deal with a specific error when using the Enable-RemoteMailbox cmdlet to create a mailbox in the cloud-based service, for an existing user in an on-premises Active Directory.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This video shows how to use Hyena, from SystemTools Software, to update 100 user accounts from an external text file. View in 1080p for best video quality.

569 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question