strong password group policy

[lsuffich]

I have 2 OUs. I want OU #1 to have password complexity
enabled but not OU #2. I originally wanted all users to
use strong passwords so I enabled password complexity in
the Default Domain Group Policy. I changed my mind, and
set policy back to "not defined." Next, I created 2
separate group policies for OU #1 & #2 with password
complexity enabled for OU#1 but not Defined for OU #2.
For some reason OU #2 is requiring strong passwords. I
have changed all group policies back to "not defined" and
have even removed all group polices from each OU. Neither
worked. How is this plocicy enabled on an OU that has no
group policy linked to it? Help!

 

[Hindy]

Passowrd policy can ONLY be set at the domain level, as
the user accounts that you are effecting are stored on
the DC's.

If you do set this option in a GPO attached to an OU, it
ONLY effects the accounts stored in the local SAM of the
machines stored in that OU, not the domain accounts.

 

[Greg]

Password policies are a domain level policy and applied
and controlled at that level. I haven't been able to
apply them to an OU. Unless MS came out with a work
around this is by design.

Good Luck,

Greg