Advertisement
Promo

Security threats Toolkit

Making a good password policy

Staff

Published: 27 Jan 2005 16:15 GMT

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

It's imperative that every organization implement a strong security policy that defines all security-related options. This policy should also include a password and account policy that defines how users and administrators should handle their passwords and user accounts.

Once you've defined your policies, you can use the utilities that Windows NT provides to enforce them. You can administer settings that affect user accounts and passwords through User Manager and User Manager For Domains, which you'll find in the Administrative Tools folder. Just open the Policies menu, and click Accounts.

Here's a look at the settings you'll encounter in the Account Policy dialog box.

  • Maximum Password Age: This option specifies the number of days that passwords are valid. When the passwords get older than the number specified, the system prompts the user to create a new password.
  • Minimum Password Age: This setting specifies the minimum number of days after which users can change their passwords. This setting works in conjunction with the Maximum Password Age and Password Uniqueness settings.
  • Minimum Password Length: This setting is self-explanatory.
  • Password Uniqueness: This setting makes sure users actually use a password for some time, and it prevents users from using the same password all of the time or from switching back and forth between two.
  • Lockout After: This option allows the system to lock the user account after a specified number of unsuccessful logon attempts.
  • Reset Count After: This setting tells the system to automatically reset the counter of bad logon attempts after a specified time.
  • Lockout Duration: Once the system locks out an account, this setting specifies whether the administrator must unlock it or if the system will automatically unlock it after a given period of time.

  • Email
  • Trackback
  • Clip Link
  • Print friendlyPrint with EPSON

Did you find this article useful?
70 out of 133 people found this useful


In association with HP

Talkback

Post a comment


Full Talkback thread

1 comment

  1. I had don Project on Intel which is related to the... Panchasheela Anandrao Gaikwad

Related Links

More In Security threats


Company/Topic Alerts

Create a new alert from the list below:



Related BlackBerry Resources

Protecting the BlackBerry Device Platform Against Malware

BlackBerry Devices with Bluetooth - Security Overview

BlackBerry Enterprise Server IT Policy

BlackBerry Enterprise Solution - Security Technical Overview

BlackBerry Enterprise Solution and RSA SecurID

CIO's Guide to Mobile Security

See All White Papers

Video icon

Video

Sentry Posts Blog

McKinnon lawyers seek judicial review

Lawyers seeking a judicial review for Nasa hacker Gary McKinnon lodged fresh evidence of his psychiatric state at the High Court on Thursday. Karen Todner, McKinnon's solicitor,... More

1 comment

Beware of keeping your head in the clo...

Information security professionals can look forward to a deepening appreciation for their skills as security continues to be recognised as an essential element for doing business in... More

1 comment

Civil liberties groups attack file-sha...

Civil liberties and digital rights organisations have strongly criticised Lord Mandelson's Digital Economy Bill. Liberty said in a position paper on Tuesday that the bill, part of... More

Post a comment


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

ALL TOOLKITS

Blogs

Newsletters