And more specifically, type 'set logon' to see the LOGONSERVER environment
variable.
You have a couple of options for finding the account and password policy via
the command line, but neither one can handle large integers that are used by
attributes such as maxPwdAge very well. Here is an example of using the
dsquery command:
C:\> dsquery * "dc=test,dc=local" -scope base -attr minPwdAge maxPwdAge
minPwdLength
On W2K, you can use the enumprop command from the resource kit:
C:\>enumprop /ATTR:maxpwdage,minpwdage,minpwdlength
"LDAP://dc=test,dc=local"
If you want a script to do it or want to see all of the password and lockout
attributes, visit this page:
http://rallenhome.com/books/adcookbook/src/06.12-view_lockout_password_policy.vbs.txt
Robbie Allen
Author of "Active Directory Cookbook" (O'Reilly and Associates)
http://www.rallenhome.com/