G
Guest
Hi All,
My server is a W2K server configured to the domain server and the domain
group policy is applied to it. When I open the Local Security Policy and it
showed that Password Complexity was available and set. But when I run the
secedit command - %SystemRoot%\system32\secedit.exe /export /mergedpolicy
/cfg dump.txt /areas SECURITYPOLICY the following is the extracted result
from the dump.txt file.
My questions:-
1. Why the password complexity information (actually all the password
information) is missing from the output? (Some of the other servers the above
command gives the password information)
2. Is there any exception on which Secedit may not return the password
information of a local or merged security policy?
Local Security Policy check
[Unicode]
Unicode=yes
[Version]
signature="$CHICAGO$"
Revision=1
[Profile Description]
Description=Default Security Settings. (Windows Server)
[System Access]
ForceLogoffWhenHourExpire = 1
NewAdministratorName = "pssnt"
EnableGuestAccount = 0
[System Log]
MaximumLogSize = 16384
AuditLogRetentionPeriod = 0
RetentionDays = 7
[Security Log]
MaximumLogSize = 64000
AuditLogRetentionPeriod = 0
RetentionDays = 7
[Application Log]
MaximumLogSize = 16384
AuditLogRetentionPeriod = 0
RetentionDays = 7
[Event Audit]
AuditSystemEvents = 3
AuditLogonEvents = 3
AuditPolicyChange = 3
AuditAccountManage = 3
AuditProcessTracking = 3
AuditAccountLogon = 3
[Registry Values]
.....
Any help is highly appreciated.
Thanks,
Murali.
My server is a W2K server configured to the domain server and the domain
group policy is applied to it. When I open the Local Security Policy and it
showed that Password Complexity was available and set. But when I run the
secedit command - %SystemRoot%\system32\secedit.exe /export /mergedpolicy
/cfg dump.txt /areas SECURITYPOLICY the following is the extracted result
from the dump.txt file.
My questions:-
1. Why the password complexity information (actually all the password
information) is missing from the output? (Some of the other servers the above
command gives the password information)
2. Is there any exception on which Secedit may not return the password
information of a local or merged security policy?
Local Security Policy check
[Unicode]
Unicode=yes
[Version]
signature="$CHICAGO$"
Revision=1
[Profile Description]
Description=Default Security Settings. (Windows Server)
[System Access]
ForceLogoffWhenHourExpire = 1
NewAdministratorName = "pssnt"
EnableGuestAccount = 0
[System Log]
MaximumLogSize = 16384
AuditLogRetentionPeriod = 0
RetentionDays = 7
[Security Log]
MaximumLogSize = 64000
AuditLogRetentionPeriod = 0
RetentionDays = 7
[Application Log]
MaximumLogSize = 16384
AuditLogRetentionPeriod = 0
RetentionDays = 7
[Event Audit]
AuditSystemEvents = 3
AuditLogonEvents = 3
AuditPolicyChange = 3
AuditAccountManage = 3
AuditProcessTracking = 3
AuditAccountLogon = 3
[Registry Values]
.....
Any help is highly appreciated.
Thanks,
Murali.