Monday, 22 August, 2011

SBS 2008 and 2011 Active Directory Password Complexity

To manage the password setup in SBS 2008 and SBS 2011 Active Directory we use the SBS Console:

  1. Open the SBS Console.
  2. Click on the Users and Groups tab.
  3. If not already selected, click on the Users tab.
  4. Under Tasks click on Change password policies.
    • image
  5. Set the password policy settings accordingly.
    • image
  6. Click Apply and OK.
    1. NOTE: All users will be required to change their passwords on their next log on if any changes are made to these settings!

This wizard is normally used during the set up process only.

If this wizard is used somewhere in the middle of an SBS Migration or SBS Swing Migration the consequences may be dire. It is best left as the final step _after_ at least one week of the post-migrated server being in production.

Philip Elder
MPECS Inc.
Microsoft Small Business Specialists
Co-Author: SBS 2008 Blueprint Book

*Our original iMac was stolen (previous blog post). We now have a new MacBook Pro courtesy of Vlad Mazek, owner of OWN.

Windows Live Writer

Posted by Philip Elder SBS MVP at 15:27
Labels: , , , , , , , , , ,

1 comments:

Chris Knight said...

10 characters is too few characters. You can wind up the minimum password length and turn off the complexity.

Short reason why here:
http://xkcd.com/936/

Long reason why here:
http://en.wikipedia.org/wiki/Password_strength

23 August, 2011 19:26

Post a Comment

Subscribe to: Post Comments (Atom)