Complex password policy - service accounts

G

Guest

Hi

I want to set a complex password policy that changes every 90 days or so, which I can do.

BUT how do I account for the many service accounts on my domain such as SQL sa accounts etc, as these are non interactive they will get locked every 90 days unless someone logs in as them and sets the password.

Any idea on ways to solve this, I presume a second domain is one way, any others?
Putting them in another OU won't work as this policy can only be domain level.

Will manually setting 'password never expires' on the individual account overide?

Thanks

M
 
D

Danny Sanders

Will manually setting 'password never expires' on the individual account
overide?


Yes. In the interest of security you should manually change these passwords
periodically.

hth
DDS W 2k MVP MCSE

huff-n-puff said:
Hi

I want to set a complex password policy that changes every 90 days or so, which I can do.

BUT how do I account for the many service accounts on my domain such as
Click to expand...
SQL sa accounts etc, as these are non interactive they will get locked
every 90 days unless someone logs in as them and sets the password.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Service accounts and Complex Passwords 1
2003 Group Policy Default Domain Policy 2
Password Policy 4
Password Policy and AD 2
Default Domain Policy Question 4
policy 2
GP do not take effect 4
Password Policy 2

Top