I recently set up a test domain using windows
server 2003 and I am not able to change any of
the password settings using secpol.msc. Is
there a way to disable or enable this feature.
I could be wrong but I thought secpol.msc only set the local policies kinda like gpedit.msc. On a domain you set the policies in the GPOs on the Active Directory. http://www.maxi-pedia.com/what+is+t...
I usually set them on the Default GPO so that they apply to every one including me so that no one can brute force my account too.
http://technet.microsoft.com/en-us/...
It also gives me a way to empathize with the users complaining about the password policies. ;-)
Hope this helps.
Ad Choices