Disallow blank passwords

[Guest]

Hi,

I recently found some users changing there passwords to "Blank" passwords. I
have two Windows 2000 DC's with the Domain Controller Policy set with a
minimum password lenght of 8 characters.
Is there something I'm missing?
How are the users still allowed to enter blank passwords?

Thanks for any help!

-Steve

 

[Paul Adare]

microsoft.public.win2000.security news group, =?Utf-8?B?c3RldmUwMTE3?=

I
have two Windows 2000 DC's with the Domain Controller Policy set with a
minimum password lenght of 8 characters.
Is there something I'm missing?
How are the users still allowed to enter blank passwords?

You're setting the password policy in the wrong place, it needs to be
set at the domain level, not at the domain controller level. You want
the Default Domain Policy GPO.

--
Paul Adare - MVP Virtual Machines
It all began with Adam. He was the first man to tell a joke--or a lie.
How lucky Adam was. He knew when he said a good thing, nobody had said
it before. Adam was not alone in the Garden of Eden, however, and does
not deserve all the credit; much is due to Eve, the first woman, and
Satan, the first consultant." - Mark Twain

 

[Guest]

Thanks for your reply.

It is set there as well for a minimum of 8 characters. I have set it every
where I can find but nothing works.
Do I need to set the complexity option?

 

[Guest]

I just used net accounts comand and it shows password lenght as 0

 

[Joe Richards [MVP]]

Your policy isn't being applied right, you need to google for docs on
troubleshooting GPOs and start digging. Start with GPRESULT on a DC.

--
Joe Richards Microsoft MVP Windows Server Directory Services
Author of O'Reilly Active Directory Third Edition
www.joeware.net


---O'Reilly Active Directory Third Edition now available---

http://www.joeware.net/win/ad3e.htm

 

[Guest]

Thanks for the info.
I ended up removing and re-adding the default GPO to the domain in AD and
now it seems to be working.
Thanks to everyone for the help.

-Steve