Changing passwords.

G

Guest

We have a windows 2000 domain running active directory with about 500 users

I am having intermittent problems with users not being able to change there passwords using the ctrl+alt+del change password feature.

These client machines are 2000/XP

Has anyone come across this before

Cheer
Stephe
 
M

Matjaz Ladava [MVP]

What error do they get when they try to change password ?

--

Regards

Matjaz Ladava, MCSA, MCSE, MCT, MVP
Microsoft MVP Windows Server - Active Directory
(e-mail address removed), (e-mail address removed)
 
G

Guest

I get the following error:

Your password must be at least 8 characters and cannot repeat any of your previous 10 passwords. Please type a different password. Type a password which meets these requirements in both boxes.

The thing is I have tried many different passwords all which meet the requirements but are not accepted!! The passwords are at least 8 characters long and are nothing like my previous 10!!

Any ideas?
 
H

Hank Arnold

You need to talk with your system admin. Password requirements are
controlled by the administrator.

--
Regards,
Hank Arnold

Stephen said:
I get the following error:

Your password must be at least 8 characters and cannot repeat any of your
Click to expand...
previous 10 passwords. Please type a different password. Type a password
which meets these requirements in both boxes.
The thing is I have tried many different passwords all which meet the
Click to expand...
requirements but are not accepted!! The passwords are at least 8 characters
long and are nothing like my previous 10!!
 
G

Guest

Well ….. I am the sysadmin and I have checked the GPO and all looks fine

It’s the inconsistency I don’t understand, if I can change it once then not for the rest of the week why

It works for some but not others? The policy is on the root of the domain so there all getting the same one! I just don’t see why its like that

Any one come across this before?
 
C

Cary Shultz [A.D. MVP]

Stephen,

Take a look at the Default Domain Policy - specifically in the Computer
Configuration - Windows Setting - Security Setting - Accounts Policy -
Password Policy.

Enforce Password History - 10 passwords remembered
Minimum Password Length - 8 characters
Maximum Password Age - xx days
Minimum Password Age - xx days
Password must meet complexity - xxxxxxxx

Look at the all of the settings - is the "password must met complexity ..."
set to enabled?

Then take a look at the Domain Security Policy. It *should* be the same as
the settings from the Default Domain Policy. Just one little test - What
happens if you enter net accounts on a client system? What happens if you
enter net accounts on the DC? Is the output the same?

HTH,

Cary

Stephen said:
Well ... I am the sysadmin and I have checked the GPO and all looks fine.

It's the inconsistency I don't understand, if I can change it once then
Click to expand...
not for the rest of the week why?
It works for some but not others? The policy is on the root of the domain
Click to expand...
so there all getting the same one! I just don't see why its like that!
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Domain users can not change there password 3
User cannot change password 1
Password issues - Multiple site - single AD/Forest 3
users unable to change password 25
Account Lockouts after password change 4
Testing - Can Administrator login as a user without the user's password? 2
password local policy in domain 2
DOMAIN CONTROLLER CHANGE PASSWORD 1

Top