RE: Password Change History

[Maglinger, Paul]

Do you guys have an application or database which requires a separate
login?  We do and our users sometimes get confused between the two.

 

-Paul

 

From: Andrew S. Baker [mailto:asbz...@gmail.com] 
Sent: Monday, March 01, 2010 9:45 AM
To: NT System Admin Issues
Subject: Re: Password Change History

 

Exactly.  If she swears that she changed it last month, then...  :)


-ASB: http://XeeSM.com/AndrewBaker



On Mon, Mar 1, 2010 at 10:41 AM, John Hornbuckle
<john.hornbuc...@taylor.k12.fl.us> wrote:

Right-and her authority could well be wrong. That's what I'm trying to
ascertain.

 

I ran the password age tool Paul posted a link to, and it says her
password is 55 days old at the moment. I'm going to ask her when she
thinks she last changed it, to see how her perception compares.

 

We only have one policy relating to password ages-if it weren't working,
her password would never expire. At least, that's the theory.

 

:-)

 

 

 

From: Andrew S. Baker [mailto:asbz...@gmail.com] 
Sent: Monday, March 01, 2010 10:39 AM


To: NT System Admin Issues
Subject: Re: Password Change History

 

Well, you only have it on her authority that she's actually had to
change the password.

 

When was the last date she actually changed the password?


Did she have problems changing it on any of the occasions where it was
warranted?

 

Are there other passwords in the environment that need to be changed
regularly?

 

Is she really being managed by the right group policy for password age?


-ASB: http://XeeSM.com/AndrewBaker

On Mon, Mar 1, 2010 at 10:32 AM, John Hornbuckle
<john.hornbuc...@taylor.k12.fl.us> wrote:

Hm... That could explain a little. Still, something isn't right.

 

Her account was created 193 days ago-August 20th. If she's prompted
every 76 days (and she changes the password on the day she's prompted),
then she'd have changed it twice during that period. The first one at
November 4th, then again January 19th.

 

She says she has had to change it 5 times, though.

 

 

 

John

 

 

From: Andrew S. Baker [mailto:asbz...@gmail.com] 
Sent: Monday, March 01, 2010 10:21 AM


To: NT System Admin Issues

Subject: Re: Password Change History

 

She will get reminded 14 days prior to the expiration date, so the
effect will be that she changes it every 76-80 days


-ASB: http://XeeSM.com/AndrewBaker

On Mon, Mar 1, 2010 at 10:09 AM, John Hornbuckle
<john.hornbuc...@taylor.k12.fl.us> wrote:

We have a group policy requiring setting a maximum password age of 90
days. I have a user who swears she's having to change hers more
frequently than that. I'm not really sure how to troubleshoot... Is
there some way I can confirm whether or not what she's saying is
accurate? It seems likely that it just FEELS like more frequently than
90 days to her, but you never know-weird things can happen sometimes.
And since we only implemented password expiration relatively recently,
it's possible that I did something wrong. Although I'd have expected to
hear from a lot more people than just one if that's the case.

 

 

 

John Hornbuckle

MIS Department

Taylor County School District

www.taylor.k12.fl.us

 

 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~