Don't undefine, disable or clear. Undefining leaves what is there in place.
So say you want to clear min password length, set the length to zero, don't undefine. Etc. BTW, that info is stored on the NC Head object of the domain. joe -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Cothern Jeff D. Team EITC Sent: Monday, March 21, 2005 8:33 PM To: [email protected] Subject: [ActiveDir]Password Policy Ok say your testing a third party software for password policy enforcement. So you want to turn off password polcies within a 2000 AD domain. You clear the Domain and the Domain Controller policy settings for passwords to ensure that nothing is set there. But when you log into the DC with a test account to verify that its not checking passwords you find that it is still enforcing the length and the history part of the password policy. Is there a good place to look that this could be set within the registry? Jeff List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
