SamR Posted April 7, 2010 Posted April 7, 2010 I know Active Directory can be configured to remember a history of passwords per user, the last 10 passwords, for example. Is there a way to prevent passwords from being recycled during a certain time frame? Can I prevent a user from changing his/her password to anything he/she has used within the last year, regardless of the number of changes?
cluberti Posted April 8, 2010 Posted April 8, 2010 Not technically, no. But you can set a time for which the user cannot change the password again after doing a required password change, so that if a user changes their password (enforced, say, once a month for example) they cannot change it again for <x> days (the Minimum password age policy, I beleive).Also, you could lock down the UI as well:http://support.microsoft.com/kb/324744
SamR Posted April 8, 2010 Author Posted April 8, 2010 That's a great idea, cluberti. I never thought about using min and max password ages in tandem to create the same effect. I think that will solve my problem. Thank you!
Recommended Posts
Please sign in to comment
You will be able to leave a comment after signing in
Sign In Now