Odd Windows password reset issues
Password policies, password reset, Windows Server 2003, Windows Server 2003 administration, Windows Server 2008, Windows Server 2008 Administration, Windows XP, Windows XP administration
I've got a client who's having an odd password reset issue. They have five domain controllers - three of them are Windows Server 2003 Server and two are Server 2008. The primary is a 2003 system. Workstations are Windows XP.
The issue is if user passwords are about to expire (or have expired) when users try to reset it themselves, they get a error saying that the domain is not available, or that the password has to be at least 6 characters long and at least a day old.
The admin will usually have to go in and reset the each user's password to a default to get them logged on. From there, the users can Ctrl+Alt+Del to change to a different password.
FYI, the password policy is set at default: 24/42/1/3/disabled/disabled. (Don't mention it...I know, that's another issue altogether!)
It sounds like the workstations are getting some mixed messages about password policies and wanted to see if any of you have any ideas?
[/pre]
Software/Hardware used:
windows xp, windows server 2003, windows server 2008
Software/Hardware used:
windows xp, windows server 2003, windows server 2008
ASKED:
April 16, 2010 12:37 PM
UPDATED:
September 14, 2010 1:16 AM
Answer Wiki:
At the workstation's command prompt, type: gpresult >group.txt
You can see what policy is hitting a particular computer. This may help you trace the problem. You can setup site and services so the subnet that the user workstation are located would attempt to authenticate first to that particular server (Windows 2003).
To see all answers submitted to the Answer Wiki: View Answer History.
Thanks Aquacer0…I’ll have my client check and see what he can find out.