Solved

SBS 2011 - password policy for user groups

Posted on 2012-03-14
3
897 Views
Last Modified: 2012-03-14
Hello experts,

Is there a way in sbs 2011 to enfore a particular password policy for domain admins group ?

I want to remove any password requirments only for the domain admins group (my boss is in this group and wants it done)

Thanks in advance
0
Comment
Question by:jiveman74
3 Comments
 
LVL 7

Assisted Solution

by:Abbas Haidar
Abbas Haidar earned 250 total points
ID: 37722714
you need to apply fine-grained password policy. please check this out

http://technet.microsoft.com/en-us/library/cc731589(v=ws.10).aspx
0
 
LVL 70

Accepted Solution

by:
KCTS earned 250 total points
ID: 37722840
The fine-grained password policy is the only option - its not as easy to implement as it should be !

Its not necesarily a good idea for 'the boss' to be a domain admin, and its a very bad idea to do anything that weakens the password policy for this powerful group of users.

See http://blog.becker.sc/2010/11/step-by-step-guide-to-fine-grained.html for a step-by-strp guide (its for 2008 but 2011 is essentially the same)
0
 
LVL 18

Expert Comment

by:Andrew Davis
ID: 37723163
Perhaps he should also remove the locks from the front door so that he doesnt have to get a key out.

Stupid ;)
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This guide is intended to provide step by step instructions on how to migrate from Small Business Server 2003 to Small Business Server 2011. NOTE: This guide has been written using the preview version of SBS2011 therefore some of the screens may …
A quick step-by-step overview of installing and configuring Carbonite Server Backup.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question