- Password Policy
- Posted by William on January 6th, 2004
Hi all,
I believe I have read along the line that the password
policy on a single 2003 AD Domain can NOT be altered by
OU. For example, I define a password policy (say...
complex passwords <ON>) and set this at the root domain
affecting the <Users> OU. I then create a <test> OU and
link a new GPO, and change the complex password policy to
OFF and block inheritence. Can I then have simplex
passwords on the <test> OU or does the default password
policy still override this? I have a disagreement with a
co-worker on this. He contends that password policies can
be changed per OU, I contend that this is defined by
domain and not by OU. I bow to the gurus for the correct
answer... Thank you!
- Posted by Mike Brannigan [MSFT] on January 7th, 2004
William,
Password policy can only be set at the domain level.
Setting any other values in a GPO on an OU has no effect the Domain policy
stands.
--
Regards,
Mike
--
Mike Brannigan [Microsoft]
This posting is provided "AS IS" with no warranties, and confers no
rights
Please note I cannot respond to e-mailed questions, please use these
newsgroups
"William" <william@discussions.microsoft.com> wrote in message
news:05cc01c3d4ac$5f4078b0$a101280a@phx.gbl...
- Posted by William on January 7th, 2004
Thank you Mike, I appreciate your timely and accurate
responce! :-)
