Password restrictions

[Preacher Man]

I am having trouble getting a GPO that I created today to give me the
desired results. My server is a Win2K and the workstation is a WinXP. The
GPO I created defines some Account policies. The trouble I am having is
with the enforce password complexity rule. I run gpedit.msc on the XP
machine and it shows the correct GPO settings but when I go to the server
and force user to change password at next logon, it ask me to change but it
does not enforce the rules. Does anyone have any idea on this?

BTW: I have the GPO linked at the domain level and I have set the access
list to only apply the GPO to my PC and username.

Thanks,
Preacher Man

 

[Guest]

Hi Preacher Man,

"All domain controllers for a domain enforce the account policy settings
that are defined in the Default Domain Policy."

Regards,

 

[Preacher Man]

Do I have to set the password policy in teh "Default Domain Policy" or can I
create a new one?

 

[Guest]

You have to set the password policy in the Default Domain Policy. There can
be only a password policy per domain.

Regards,

 

[shemaine]

I encounter the reverse situation as you. after I implemented password
GP at domain level by add a new GP instead of editing the default
domain policy, it works fine. however, then I edit the Password Policy
by un-define the Password must meet complexisty requirement , but
found the next time I login domain, when asked for change password, I
was unable to make the new password as any charachters since the rule
still function, then finally I just delete the password policy I
create, even in this way, it still work???????

How comes this, and where is solution.

Thanks for kind help.

Rgds
shermaine