You are here: TWiki> Online Web>UserResetPassword (2015-07-02, LoicBrarda)
create new tag
, view all tags

How to change password?

From Windows

Use standard windows method: Ctrl+Alt+Del and then Change password...

If you want to change it from a terminal server session, you can use Ctr+Alt+End instead (to get the classic Windows menu)

From linux

You can use either the passwd or kpasswd command.

Identifying Settings Related to Password Policies

  • Enforce password history determines the number of unique new passwords a user must use before an old password can be reused. The value of this setting can be between 0 and 24; if it is set to 0, enforce password history is disabled. VALUE=0
  • Maximum password age determines how many days a password can be used before the user is required to change it. The value of this setting can be between 0 and 999; if it is set to 0, passwords never expire. Setting this value too low can cause users to be frustrated; setting it too high or disabling it gives potential hackers more time to determine passwords. VALUE=42
  • Minimum password age determines how many days a new password must be kept before the user can change it. This setting is designed to work with the Enforce password history setting so that users cannot quickly reset their passwords the required number of times, and then change back to their old passwords. The value of this setting can be between 0 and 999; if it is set to 0, users can immediately change new passwords. VALUE=0
  • Minimum password length determines the minimum number of characters a password can have. Although Windows 2000, Windows XP, and Windows Server 2003 support passwords up to 28 characters in length, the value of this setting can only be between 0 and 14. If it is set to 0, users are allowed to have blank passwords, so you should not use a value of 0. VALUE=7
  • Passwords must meet complexity requirements determines whether password complexity is enforced. If this setting is enabled, user passwords meet the following requirements:
    • The password is at least six characters long
    • The password contains characters from at least three of the following five categories:
      • English uppercase characters (A - Z)
      • English lowercase characters (a - z)
      • Base 10 digits (0 - 9)
      • Non-alphanumeric (for example: !, $, #, or %)
      • Unicode characters
      • The password does not contain three or more characters from the user's account name.
If the account name is less than three characters long, this check is not performed because the rate at which passwords would be rejected is too high. When checking against the user's full name, several characters are treated as delimiters that separate the name into individual tokens: commas, periods, dashes/hyphens, underscores, spaces, pound-signs, and tabs. For each token that is three or more characters long, that token is searched for in the password; if it is present, the password change is rejected. For example, the name "Erin M. Hagens" would be split into three tokens: "Erin", "M", and "Hagens". Because the second token is only one character long, it would be ignored. Therefore, this user could not have a password that included either "erin" or "hagens" as a substring anywhere in the password. All of these checks are case-insensitive.
Edit | Attach | PDF version | Print version |  | Raw View | Raw edit | Backlinks | History: r10 < r9 < r8 < r7 < r6 | More topic actions
Topic revision: r10 - 2015-07-02 - LoicBrarda

This site is powered by the TWiki collaboration platform Powered by PerlCopyright © 2008-2022 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback