M
Mitchell Ginsberg
I am a network admin for a medium sized Active Directory
environment with approximately 70 DCs. Active Directory
is running in mixed mode supporting 12 NT servers acting
as BDCs. I connect to the server with the PDC emulator
role and enable a group policy for passwords as follows:
Password History - Remember 8 passwords
Password Length - 5 Characters
Minimum Password Age - 1 Day
Maximum Password Age - 90 days
Using GPResult and ADUC, I am able to verify these policy
settings are in place for 15 minutes. However, as soon as
AD replication takes place, the settings revert back to a
previous password policy setting of:
Password History - Remember 0 passwords
Password Length - 5 Characters
Minimum Password Age - 0 Day
Maximum Password Age - 0 days
Interestingly, it appears that when I set the policy to
all items not defined, AD replication will no over write
the policy.
Any suggestions or ideas on how to solve this problem will
be greatly appreciated.
Mitchell Ginsberg
environment with approximately 70 DCs. Active Directory
is running in mixed mode supporting 12 NT servers acting
as BDCs. I connect to the server with the PDC emulator
role and enable a group policy for passwords as follows:
Password History - Remember 8 passwords
Password Length - 5 Characters
Minimum Password Age - 1 Day
Maximum Password Age - 90 days
Using GPResult and ADUC, I am able to verify these policy
settings are in place for 15 minutes. However, as soon as
AD replication takes place, the settings revert back to a
previous password policy setting of:
Password History - Remember 0 passwords
Password Length - 5 Characters
Minimum Password Age - 0 Day
Maximum Password Age - 0 days
Interestingly, it appears that when I set the policy to
all items not defined, AD replication will no over write
the policy.
Any suggestions or ideas on how to solve this problem will
be greatly appreciated.
Mitchell Ginsberg