Filtering Security GPO in Active Directory

[tjay]

I have a Windows 2003 Active directory, that is being used as a RADIUS
server as well. I would like to apply strong passwords to all users
except a small group of about 10 users. I went into the Domain GPO and
turned on the strong password options that I would like and all is
well. Except that makes all users have to have strong passwords. So I
am looking for a way to filter that GPO so that is doesn't apply to
those other users. I tried creating another GPO and putting it in the
top of the list in the domain GPO's, and only applying it to those
users, and disabling strong passwords in that GPO but it doesn't seems
to work. Looking for some suggestions. I so not have a deep knowledge
of Active Directory.

 

[Tomasz Onyszko]

I have a Windows 2003 Active directory, that is being used as a RADIUS
server as well. I would like to apply strong passwords to all users
except a small group of about 10 users. I went into the Domain GPO and
turned on the strong password options that I would like and all is
well. Except that makes all users have to have strong passwords. So I
am looking for a way to filter that GPO so that is doesn't apply to
those other users. I tried creating another GPO and putting it in the
top of the list in the domain GPO's, and only applying it to those
users, and disabling strong passwords in that GPO but it doesn't seems
to work. Looking for some suggestions. I so not have a deep knowledge
of Active Directory.

In the domain You can have only one password policy - so If You will set
strong password requirements in the Default domain policy it will affect
all users in the domain.