I don't know if it's possible to implement a custom, local, password filter. However it is available as an option on DCs.
SBS 2003 inserted its own passfilt.dll which included a check for portions of the username in the password, and other people on this list have implanted their own in the past. Cheers Ken -----Original Message----- From: Ben Scott [mailto:[email protected]] Sent: Friday, 27 August 2010 9:33 AM To: NT System Admin Issues Subject: Re: Minimum password length GPO On Thu, Aug 26, 2010 at 8:55 PM, Ken Schaefer <[email protected]> wrote: > Passfilt.dll (password filter dll) only exist on DCs, so having > knowledge of domain password policy wouldn't be enough. Hmmm. Interesting. So the complexity checking done by clients for local (SAM) accounts must come from somewhere else. Two different implementations, I guess. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
