Strong passwords with Win2k
Windows 2000 Advance Server supports card key or token authentication so users do not have to remember a complicated/strong password. Does Win2k have the option of the server generating new passwords based on default settings, such as password expiration, eight character minimum length, etc.? Or perhaps an add-on utility?

The reason for this question: Users set their initial Domain ID password and then a PIN for their card key or token. They never use the Domain password again and forget it. When the 'password expire' time comes around (unless it is turned off), there is a flood of calls to the help desk to reset passwords. If the server changes the password, the users do not need to know what it is, and that particular part of security is maintained.

    Requires Free Membership to View

    SearchSecurity.com members gain immediate and unlimited access to breaking industry news, virus alerts, new hacker threats, highly focused security newsletters, and more -- all at no cost. Join me on SearchSecurity.com today!

    Michael S. Mimoso, Editorial Director

    By submitting your registration information to SearchSecurity.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchSecurity.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

This is a great idea, but it isn't in Win2k by default, and I don't know of an add-on to do it.


This was first published in June 2001