Resetting Password

T

Tim Kalligonis

All,

Win2003 AD - 2003 Forest and Domain functional levels.
Win2000,XP clients

I wanted to see if anyone else has seen this happen or if my situation is
just a case of end users not telling me accurate information.

1. A user's password is reset and the option to force the user to reset the
password at next login is selected.
2. The user logs in with this password and then prompted to reset their
password.
3. The user then gets a message saying is doesn't meet the domain security
policy of 8history, 8length, and can't reset for two days.
4. They are unable to reset their password and login.

They claim that the are using a new password and that it is at least 8
characters long. If this is true then the only thing left is the two day
time period which should not come into play when an administrator resets the
user's password.

A quick fix to get the user to log in was to reset their password and not
choose the option to force password reset at next login.


Has anyone else seen this or do you think the user is just not following
directions and choosing a new password?

Thanks,
Tim
 
N

neo [mvp outlook]

Are you sure they aren't getting bit the last 8 passwords remembered (your 8
history)? (Depending on how often they have to reset passwords, this could
cover a couple of years worth. ;)
 
T

Tim Kalligonis

That's what they are telling me. They say they are using something new
(something that hasn't been used in the last 8 times), but I have no way to
prove it.
 
L

Lanwench [MVP - Exchange]

Tim said:
That's what they are telling me. They say they are using something
new (something that hasn't been used in the last 8 times), but I have
no way to prove it.
Click to expand...

Sure you do. Stand over their shoulder & watch.
 
M

Mr. Smith

Users are ignorant and can't tell you the facts. You have two options,
lessen domain security and allow them to not have complex passwords.



Or instruct them on what a secure password would look like.

Fist off is the users login is bobsmith then their password cant be bob123
or bobsmith, or bobsmi123. That's just stupid of the user to do that. The
password should be like this: oPEn29Door.
 
T

Tim Kalligonis

I think that answers my question....
No one has ever actually seen a problem..... so it is most likely what I
originally thought.... The end user isn't following directions.

I could stand behind the user while the type their new password but there is
no way for me to prove that it has or hasn't been one of their last 8.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Reset password from USB boot 4
AD and Password policy question 12
Force Password change (Delegate control) 8
Windows 10 W10 password prob. 2
Secure Erase Samsung Galaxy S7 8
Windows 2003 Administrator not all powerful? 3
Warning - Extortion Scam 2
Password Export error ADMT 3 1

Top