Changing Local Security Policy (Password / Account Lockout)

G

Guest

I have a laptop running XP Pro. We have various groups that use this laptop
for presentations. I have just set up one local account that all individuals
use for logging in locally. Today, a user lwas locked out after numerous
failed attempts to log in. I logged in as local administrator to alter the
setting for the Password and Account lockout policy. However, the settings
were grayed out and I could not edit them.

This laptop is also set up as part of a domain. However, in most cases the
user does not require connection to a network.

Q: Is it possible to change the "Local security policy" for when an
individual logs onto this laptop locally?


Thanks
PolarBear
 
S

Steven L Umbach

It is possible to have a different password policy for local user account
[not a domain user account] on the computer if that is what you mean. You
could place the laptop in an Organizational Unit that has the password
policy configured to your liking then via a Group Policy linked to that OU.
FYI Microsoft recommends no less then ten bad password attempts before
lockout and you may want to consider a lockout period of like five minutes
instead of having an administrator unlock the account that would still
effectively protect against brute force password attempts assuming users are
using strong passwords. --- Steve
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Top