Default domain policy

  • Thread starter Thread starter user
  • Start date Start date
U

user

Hi, hope someone can help!

The only settings used in our default domain policy are in computer
config/account policies and are
passwords to remember: 0
minimum length: 3
max age: 42
min age: 30

My problem is I want to change these settings and have done but the changes
don't have any effect.
I can still use 3 character passwords when the setting is changed to 6
I've enabled the account lockout so it is set to lockout for 60 mins after 5
bad logon attempts but this fails also.

Any thoughts where this is going wrong?

Cheers
 
user said:
Hi, hope someone can help!

The only settings used in our default domain policy are in computer
config/account policies and are
passwords to remember: 0
minimum length: 3
max age: 42
min age: 30

My problem is I want to change these settings and have done but the changes
don't have any effect.
I can still use 3 character passwords when the setting is changed to 6
I've enabled the account lockout so it is set to lockout for 60 mins after 5
bad logon attempts but this fails also.

Any thoughts where this is going wrong?

Cheers
Click to expand...
 
Hi,
Double check the group membership to make sure that the groups that are
to be receiving the policy are listed as "apply policy" under the
Advanced Settings. If this fails I would try manually replicating the
changes to see if this works!
 
Howdy!
The only settings used in our default domain policy are in computer
config/account policies and are
Click to expand...

So - you did override the existing default domain policy or created a
new one yourself?
My problem is I want to change these settings and have done but the changes
don't have any effect.
Click to expand...

You waited for the computer to apply the changes (afaik 90 minutes + a
random number of minutes - max 30)?

cheers,

Florian
 
Domain Users are set to read and apply policy.
As a test I've re-set the default domain policy so there are no policy
settings. I've then added them to a test policy on a test OU - swettings
beiuyng pasword lenght minimum 4 characters, remember 6 passwords.. All of
the other policy settings in the test OU get applied but the password policy
is still stuck as 3 characters minimum, remember no passwords.

I'm just can't see where its getting this setting from!
 
Make sure that the policy for that OU is set to Enforced.

--

Mike Matheny

user said:
Domain Users are set to read and apply policy.
As a test I've re-set the default domain policy so there are no policy
settings. I've then added them to a test policy on a test OU - swettings
beiuyng pasword lenght minimum 4 characters, remember 6 passwords.. All of
the other policy settings in the test OU get applied but the password
policy is still stuck as 3 characters minimum, remember no passwords.

I'm just can't see where its getting this setting from!
Click to expand...
 
Resolved by setting 'no override' on the default domain policy.

Thanks to all who posted!



Mike Matheny said:
Make sure that the policy for that OU is set to Enforced.
Click to expand...
 
Back
Top