|
Home > Archive > microsoft.public.cert.exams.mcse > January 2004 > A tale of two policies?
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
A tale of two policies?
|
|
| Adam Leinss 2004-01-06, 11:23 pm |
| What exactly is the difference between the policy "Account
lockout duration" and "Reset account lockout counter
after". It seems from my reading that they do EXACTLY the
same thing, i.e. unlock an account after X minutes.
Thanks,
Adam
| |
| Eric Phillips 2004-01-07, 12:23 am |
| "Account lockout duration" is the amount of time a user is locked after they
enter the specified number of wrong passwords.
"Reset account lockout counter after" works like this: You have set the
threshold to five attempts, your "reset account lockout counter after" value
is set to ten minutes. Joe user enters four bad passwords within 60
seconds, then enters his correct password. He if logs out after two more
minutes and enters another bad password he will be locked out. But if he
waits for more then ten minutes he can enter up to four bad passwords again.
Eric
"Adam Leinss" <aleinss@toughguy.net> wrote in message
news:057e01c3d4cf$057a0f30$a60
1280a@phx.gbl...
> What exactly is the difference between the policy "Account
> lockout duration" and "Reset account lockout counter
> after". It seems from my reading that they do EXACTLY the
> same thing, i.e. unlock an account after X minutes.
>
> Thanks,
> Adam
|
|
|
|
|