I'm in a similar situation. One of my clients (city government <30 users and extremely low turnover) is just now getting passwords that expire, and I'm easing them into the whole security/password issue. I am initially having security pretty weak (45 days, remember only the last 5, 6 chars min), but am going to work them to expire every 30 days and more complex rules, but initially, they just need to get used to changing them!
It's easier for them to get eased into it if you can work that luxury in. Also, any documentation you can present stating that you're simply trying to follow some industry-ish standard will help them understand WHY. They generally don't understand security, but if they feel they aren't the only ones "saddled" with these issues it goes better - or at least less vocalization. Dave Lum - [EMAIL PROTECTED] Sole Proprietor - DLCE ([EMAIL PROTECTED]) Sr. Network Specialist - Textron Financial 503-675-5510 -----Original Message----- From: AliAdmin [mailto:AliAdmin@;bango.net] Sent: Tuesday, November 12, 2002 05:32 AM To: NT 2000 Discussions Subject: Re: Active Directory Password Policy Grief. Luses, I like that term LoL. I'm a whole IT dept rolled into one, so I do have leeway. It is a small company who I think would not groan and moan too much, would be nice to point them to something rather than keep shouting at them for leaving stickly bits of paper around ... or am I living in a dream world <G> Cheers Ali ----- Original Message ----- From: "James Winzenz" <[EMAIL PROTECTED]> To: "NT 2000 Discussions" <[EMAIL PROTECTED]> Sent: Tuesday, November 12, 2002 1:25 PM Subject: RE: Active Directory Password Policy Grief. > Luser education? Impossible . . . <VBG> My suggestion would be to talk to > your corporate security dept. (if you have one, that is). If you *are* > corporate security as well, then you perhaps have a bit more leeway. Just > realize that if you leave password requirements weak, your Lusers *will* > exploit it to the utmost, and if you make the requirements strong, they will > gripe and moan and write their passwords down on sticky notes to put on > their monitors. That being said, I would still prefer strong password > requirements any day over weak ones. ------ You are subscribed as [email protected] Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe send a blank email to [EMAIL PROTECTED]
