Do you have a question? Post it now! No Registration Necessary. Now with pictures!
- Posted on
- Win 2003 domain security policy question
- Curious George's Twin
April 27, 2005, 6:19 am
rate this thread
With Windows NT networks (and I believe 2000 as well), I was unable to set
up a stronger password policy for certain groups.
My desired result is to put a stronger password policy on one group, but a
weaker one on another. Specifically, password complexity rules.
Is this possible with Windows 2003 active directory enabled networks and
those that have 2000 servers in the mix?
Re: Win 2003 domain security policy question
Curious George's Twin wrote:
You can do this if you have Active Directory.
Bunch the computers into Organizational Units (OU) and set an policy on
the OU. The policy will only apply onto local accounts set on those
computers. This is probably not what you want.
For domain accounts the only way to do this would be to bunch the users
into separate domains. You can only have one account policy per domain
and it must be set at the domain level.
There is no way to do this for groups of users because account policies
are applied onto computers.