Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: active directory password policy

from [Sullivan Tim P] Network Security [Permanent Link]
Subject: RE: active directory password policy
Date: Wed, 9 Feb 2005 00:33:55 -0700 
Why not write a script that runs once a night that emails the user if
they have not changed their password in X number of days? 


___________________________
Tim Sullivan
Nativemode Technologies
(623) 910-4700
tim@nativemode.com

-----Original Message-----
From: William Stegman [mailto:stegmanw@comcast.net] 
Sent: Friday, February 04, 2005 15:10 PM
To: focus-ms@securityfocus.com
Subject: active directory password policy 

Does anyone have any experience with remote users who do not login to
the domain on a regular basis or at all, and have a password expiration
policy in effect? We can't seem to come up with a good plan to handle
these users. They only occassionally access domain resources such as
webmail via the Internet or an internal website to do timesheets via
vpn, and will not have the luxury of logging on to a machine connected
to our LAN and getting the warning about soon to expire passwords. If
our policy dictates passwords expire every 90 days, how can we avoid the
inevitable calls regarding password resets?

thx

/William Stegman - Network Administrator///

TransCore - Hummelstownd


---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re[2]: disclosure the administrative password, offtopic
Next by Date:  RE: Password Protected Screen Saver and Administrative Password, Thaddeus McNamara
Previous by Thread:  RE: active directory password policy, Marsha Cipollone
Next by Thread:  RE: active directory password policy, Randy Hall
Indexes:  [Date] [Thread] [Top] [All Lists]