Welcome to UnableTo.com, where you can state any issue that you are unable to perform and receive answers from other members of the community.


0 votes
I have a domain with over 300 users and has users in many different physical locations, but all connected via vpn. I have created a password policy and linked it to all of the appropriate OU's but it is not applying correctly.

For instance, even though I set the password policy to require 12 characters, it is only applying a 6 character length requirement.
by (430 points)
retagged by

1 Answer

0 votes
Best answer

Up to server 2003 only one password policy is applied. You can set many and link them however you would like, but only the GPO with the lowest GUID will apply.

For domains with a functional level of 2008 or higher, the same holds true for GPO's, but in addition to the GPO you create Password Settings Objects or PSO's. You can create multiple PSO's and they must be linked to user(s) or group(s). PSO's are created from within ADSI Edit.

Microsoft has a great article located at this link: http://technet.microsoft.com/en-us/library/cc770842%28v=ws.10%29.aspx


by (1.5k points)
selected by