What other password policies are already in place?
Don Guyer Systems Engineer - Information Services Prudential, Fox & Roach/Trident Group 431 W. Lancaster Avenue Devon, PA 19333 Direct: (610) 993-3299 Fax: (610) 650-5306 [email protected] From: Jeremy Anderson [mailto:[email protected]] Sent: Tuesday, April 28, 2009 11:40 AM To: NT System Admin Issues Subject: Password Policy - - how do you handle this? The security guy is insisting that we set the Min Password Age to 1 day. I agree in theory that this is a swell idea, but in practice, I think it will be a disaster. We have users that forget their passwords every other day (Don't ask) and company politics that are going to let this bad habit continue. Admins reset the password, and set the flag that says "Must change password on next logon" I say, that the user will never get prompted to reset the next time they login, or that changing it will fail, because the password is now less than one day old. Security guy says "Not having that set is a bad idea, other companies do it, make it happen" How do you guys deal with this? Thanks Jeremy ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
