Presentation on adding Account Policies for password security and account lockout in Windows Server 2008.

1. PASSWORD
SECURITY
Case Project 13-1

2. Windows Server
2008 allows for
password rules to
be set up under
Account Policies
using the steps
on the next six
slides.

3. Step #1
Click Start and
navigate to
Group Policy
Management

4. Step #2
Navigate to
Group Policy
Objects in the
left pane.

5. Step #3
In the right pane,
right click Default
Domain Policy
and click Edit.

6. Step #4
Navigate to
Account Policies
in the left pane.

7. Step #5
Click Password
Policy to review
the options that
are available in
the right pane
regarding
Password
Policies.

8. Step #6
Click Account
Lockout Policy to
review the
options that are
available in the
right pane
regarding
lockout policies.

9. Recommendations
Please review the
following for my
recommendations
for new password
and lockout
policies.

10. Password Policies
• Set a password expiration
period making users reset
passwords every 45 days.
• Set minimum password
length of 7 characters.
• Set password recollection to
not allow users to use a
previously used password.

11. Password Policies cont.
Set password complexity requirements to
force users to create a password to include
at least one of each of the following:
 Uppercase letter
 Lowercase letter
 Number
 Special character

12. Account
Lockout Policies
Do not give users the
ability to enter a
password over and
over again. Set up an
Account Lockout
Policy to only allow a
user up to 3 attempts
before the account is
locked and password
must be reset.