I once enforced a password age policy on an NT4 domain where previously there had been none. And where about 300 of the salesforce users had machines that couldn't find a route to the PDC (they were using lmhosts files for resolution with old entries in them). I was popular that morning :-)
On 26 August 2010 15:35, Andrew S. Baker <asbz...@gmail.com> wrote: > Change the password age. :) > > That'll take impact rather quickly. > > > > *ASB *(My XeeSM Profile) <http://XeeSM.com/AndrewBaker> > *Exploiting Technology for Business Advantage...* > * * > Signature powered by > <http://www.wisestamp.com/email-install?utm_source=extension&utm_medium=email&utm_campaign=footer> > WiseStamp<http://www.wisestamp.com/email-install?utm_source=extension&utm_medium=email&utm_campaign=footer> > > > > On Thu, Aug 26, 2010 at 9:48 AM, Ben Scott <mailvor...@gmail.com> wrote: > >> On Thu, Aug 26, 2010 at 9:42 AM, David Mazzaccaro >> <david.mazzacc...@hudsonhhc.com> wrote: >> > If a default domain policy GPO states "min password length is 7" and I >> > change it to "min password length 8"… what will happen to those users >> who >> > are currently using 7 characters? >> >> Password policy is enforced when a password is changed, not at >> logon. So existing passwords which do not meet password policy will >> continue to work. >> >> It would be nice to have an option to re-check passwords at logon >> and force a change if non-complaint with current policy, but that >> doesn't exist, AFAIK. >> >> -- Ben >> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ >> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ >> >> > > > > > -- "On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into the machine wrong figures, will the right answers come out?' I am not able rightly to apprehend the kind of confusion of ideas that could provoke such a question." ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~