GPO - Password policy do not apply

[Guest]

I have a probelm with password policy. It looks like it desn't apply. All
other parts of policy apply without problem. This is domain computer policy
it applies to all domain computers, no exception. User policy part is
disbled. We do not have other computer policies in domain. This is not new
policy, it is used before and it worked. I noticed when user changed password
to something silly like 'asdf' in front of me. I did a test on my account and
you can put whatever you want, but it should be at least 8 characters long
with complexity level enabled and history of 12.

Any Idea?

 

[Miha Pihler]

Hi,

The only place where you can define password (Account) policy for domain is
under Default Domain policy or policy that replaces the Default Domain
Policy.

If you set this policy anywhere else (e.g. on OU) and you have computer
accounts in this OU, policy will only influence the local user accounts in
this OU, but _not_ domain user accounts.

Account policies
http://www.microsoft.com/resources/...ard/proddocs/en-us/AccountPoliciestopnode.asp

I hope this helps,

Mike

 

[Guest]

This is default domain policy. It is setup on domain level.

 

[Guest]

What group did you filter? Is "Everyone" group or a security group that you
created. Make sure that "Read and Apply" is set on them....