Resetting Password

  • Thread starter Thread starter Tim Kalligonis
  • Start date Start date
T

Tim Kalligonis

All,

Win2003 AD - 2003 Forest and Domain functional levels.
Win2000,XP clients

I wanted to see if anyone else has seen this happen or if my situation is
just a case of end users not telling me accurate information.

1. A user's password is reset and the option to force the user to reset the
password at next login is selected.
2. The user logs in with this password and then prompted to reset their
password.
3. The user then gets a message saying is doesn't meet the domain security
policy of 8history, 8length, and can't reset for two days.
4. They are unable to reset their password and login.

They claim that the are using a new password and that it is at least 8
characters long. If this is true then the only thing left is the two day
time period which should not come into play when an administrator resets the
user's password.

A quick fix to get the user to log in was to reset their password and not
choose the option to force password reset at next login.


Has anyone else seen this or do you think the user is just not following
directions and choosing a new password?

Thanks,
Tim
 
Are you sure they aren't getting bit the last 8 passwords remembered (your 8
history)? (Depending on how often they have to reset passwords, this could
cover a couple of years worth. ;)
 
That's what they are telling me. They say they are using something new
(something that hasn't been used in the last 8 times), but I have no way to
prove it.
 
Tim said:
That's what they are telling me. They say they are using something
new (something that hasn't been used in the last 8 times), but I have
no way to prove it.
Click to expand...

Sure you do. Stand over their shoulder & watch.
 
Users are ignorant and can't tell you the facts. You have two options,
lessen domain security and allow them to not have complex passwords.



Or instruct them on what a secure password would look like.

Fist off is the users login is bobsmith then their password cant be bob123
or bobsmith, or bobsmi123. That's just stupid of the user to do that. The
password should be like this: oPEn29Door.
 
I think that answers my question....
No one has ever actually seen a problem..... so it is most likely what I
originally thought.... The end user isn't following directions.

I could stand behind the user while the type their new password but there is
no way for me to prove that it has or hasn't been one of their last 8.
 
Back
Top