Domain Password Policy

Hi Friends, Domain Password Policy is used to restrict domain users for using complex password. Also change it on a regular interval so that unauthorized person can not hack the password.

Follow below steps to apply Domain Password Policy :

Right-click “Default Domain Policy” and select “Edit”. A Group Policy Editor console will open.
Now, go to below path:

OR Freshers can follow link How To Open and Configure Group Policy. Thereafter go to the below path.

Computer Configuration –> Policies –> Windows Settings–> Security Settings –> Account Policies –>

Select the “Password Policy” as shown in below picture.

On right pane there will be password related policy which need to apply as per your domain requirement. These are as follows:

  1. Enforce Password History
  2. Maximum Password Age
  3. Minimum Password Age
  4. Minimum Password Length
  5. Password must meet complexity requirements
  6. Store password using reversible encryption

Enforce Password History:
This security setting determines the number of unique passwords that are associated with a domain user ID before old password can be reused. And the number value can be from 0 to 24 password.

Maximum Password Age
This policy setting determines the number of days by when password can be used untill system ask to change the password. It’s value can be from 1 to 999. The value zero (0) is for password never expire.

Minimum Password Age
This policy setting determines the number of days by when user must use the password before change it. It’s value can be from 1 to 998.

Minimum Password Length
This policy setting determines the minimum number of characters must contain in a password.

Password must meet complexity requirements
This policy setting has two values (Enabled / Disabled) only that determines whether password must meet complexity requirements.
In case of “Enabled” , password must meet the following requirements:
Must contain at least 6 characters in length, Uppercase (A through Z), Lowercase (a through z), Number digits (0 through 9), Special characters (for example, !, $, #, %).

Store passwords using reversible encryption
This policy setting determines whether the operating system stores passwords using reversible encryption.

Therefore, make the necessary changes and apply.

Thanks…

Other Posts:

Account Lockout Policy GPO

Change Local Admin Password via Group Policy