We have a need to enforce a more stringent password policy for IDs that have elevated privileges or have access to sensitive data.
Can more than one policy be created in Windows Server 2003 (one that expires every 90 days and another policy that expires every 180 days and requires more complexity)? If this is possible, can SQL Server 2005 use these policies and how are SQL authenticated IDs tied to a specific policy?
This question was posted originally in a MSSQL 2005 forum (http://forums.microsoft.com/MSDN/ShowPost.aspx?PostID=718231&SiteID=1) and it was suggested that I check a Windows forum for planned changes in this area.
Thank you for your assistance.
I think the user/replier meant the Windows communities:
www.microsoft.com/communities
|||You can create different Group Policy's in Active Directory and apply them to the 90 and the 180 group. If these users use Windows login to SQL - password policies are implemented.
If your users use SQL authentication, you can enforce a password policy on each user. I am not that familiar with SQL 2005 password policies but should be ok to ask users for pwd renewal.
Does this help?
|||As far as I understand, in Windows 2003 it is possible to have only 1 password policy at any time, but I would suggest asking this question on the Windows Active Directory forum, I am sure they will be able to answer it properly.
-Raul Garcia
SDE/T
SQL Server Engine
|||Thanks for the info.
I originally posted this in the Windows Server forum, but the forum moderator moved it to the MSSQL forum.
I will post this question in the AD forum.
No comments:
Post a Comment