I
wondered that too and checked with Robert who sent my query on to a chap
named Jan Liikamaa. He said:
Unfortunately our product does not handle different account lockout policies. But I agree that it would be very nice to be able to specify different set of account lockoutrules.Our goal with this product was to help some customers who wanted to get the ability to implement different types of password rules for different type of users. At the moment no customers require the feature you mention.When I get some spare time I'm going to have a look at the technical possibilites to implement the feature you are asking for.
So, if
enough of us want it, perhaps Jan can do it!
Regards,
Mark.
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of joe
Sent: 07 October 2005 02:34
To: [email protected]
Subject: RE: [ActiveDir] Domain Password Policies
Does it do lockout and expiration policy or is it only
password complexity/length via a password filter?
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Robert Lundh
Sent: Wednesday, October 05, 2005 8:46 AM
To: [email protected]
Subject: RE: [ActiveDir] Domain Password Policies
*** VENDOR INFORMATION - BETA INVITATION ***
Hi!
Just as requested below and in the AD Gripes thread, we at Special Operations Software have a new product coming out soon that removes the limitation of just one password policy per domain and makes your password policies much more configurable.
I would love to invite you guys to our
closed beta to find out exactly what kind of functionality you need. You can
find some more information and a screenshot here:
http://www.specopssoft.com/forum/topic.asp?TOPIC_ID=3D147
Should you be interested in participating please email me at robert AT specopssoft DOT com.
Cheers
Robert Lundh
Special Operations Software
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Al Mulnick
Sent: den 31 augusti 2005 14:47
To: [email protected]
Subject: RE: [ActiveDir] Domain Password Policies
I have not worked with that
tool and know very little about it.
One thing to watch out for are tools that
place themselves between the client and the directory. By that I mean that
they extend the directory and it's functionality in such a way that if you were
to remove the product later (stop paying maintenance for example) then you lose
everything and start again. Some tools work that way, and I don't personally
believe they should.
Typically, if you have a different password
policy, you need a separate domain to do this natively.
Additionally, I'm not sure why you require
a separate set of password policies? Can you expand on that?
From: [EMAIL PROTECTED] on behalf of mike kline
Sent: Wed 8/31/2005 8:07 AM
To: [email protected]
Subject: [ActiveDir] Domain Password Policies
I know that Microsoft states that there can only be one password policy per
domain. Earlier this month Joe started a thread about AD Gripes and several people mentioned the password issue.
We are dealing with the same thing. I would like to have a more restrictive policy on our admin accounts OU. Has anyone used a third party
product and been successful?
For example
That product claims to do it but I'm wondering if anyone on this list has
worked with that or any other product that could help out.
Thanks
Mike
Mike
------------------------------------------------------------------------
For more information about Barclays Capital, please
visit our web site at http://www.barcap.com.
Internet communications are not secure and therefore the Barclays
Group does not accept legal responsibility for the contents of this
message. Although the Barclays Group operates anti-virus programmes,
it does not accept responsibility for any damage whatsoever that is
caused by viruses being passed. Any views or opinions presented are
solely those of the author and do not necessarily represent those of the
Barclays Group. Replies to this email may be monitored by the Barclays
Group for operational or business reasons.
------------------------------------------------------------------------
