Maybe I am missing something Hank, but I have never seen net accounts
command show if complexity is enabled or disabled. Below is an example
from a workstation of mine. --- Steve
Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.
D:\Documents and Settings\Steve>net accounts
Force user logoff how long after time expires?: Never
Minimum password age (days): 0
Maximum password age (days): 42
Minimum password length: 5
Length of password history maintained: None
Lockout threshold: 5
Lockout duration (minutes): 4
Lockout observation window (minutes): 4
Computer role: WORKSTATION
The command completed successfully.
D:\Documents and Settings\Steve>
Hank Arnold said:
Actually, it *does* show the complexity settings. However, you can't
modify the settings from the command line...
--
Regards,
Hank Arnold
For domain users you must configure account/password policy at the
domain level which by default would be Domain Security Policy but could
be any Group Policy at the domain level. If you have more than one GPO
linked at the domain level, the GPO highest in the list has the highest
priority. You can use the command "net accounts" on a domain controller
to see what the domain policy currently used though password complexity
will not be shown with that command. --- Steve
i have a bit of a dilema. I am trying apply the password requirements
(lenght, lockout, lockout period, etc..) to clients but it is not
applying.
All other policies within this group are applying but this, i can't
figure
out why? Any ideas??
-- Steve