When running SQL2K5 on W2K3 and creating a sql server login w/ both
CHECK_EXPIRATION and CHECK_POLICY set to ON, which password plicy will take
effect if there is both a local policy on that server and a domain policy
affecting that server? Generally, domain policy will take precedence over a
local policy, but SQL2K5 does not address this detail and which will take
effect. I've hunted down lots of documentation, but none of it seems clear.
Thanks.SQL Server doesn't deal with this issue. It simply hits the security API.
The domain policy will override the local policy which is by design in
Windows. SQL Server simply abides by what Windows enforces.
Mike Hotek
MHS Enterprises, Inc
http://www.mssqlserver.com
"DisgruntledTechGuy" <DisgruntledTechGuy@.discussions.microsoft.com> wrote in
message news:12CC258C-C990-47C0-A36D-6EEC39E42A03@.microsoft.com...
> When running SQL2K5 on W2K3 and creating a sql server login w/ both
> CHECK_EXPIRATION and CHECK_POLICY set to ON, which password plicy will
> take
> effect if there is both a local policy on that server and a domain policy
> affecting that server? Generally, domain policy will take precedence over
> a
> local policy, but SQL2K5 does not address this detail and which will take
> effect. I've hunted down lots of documentation, but none of it seems
> clear.
> Thanks.|||Thanks Mike. That's what I figured, but documentation out there was ambiguo
us.
"Michael Hotek" wrote:
> SQL Server doesn't deal with this issue. It simply hits the security API.
> The domain policy will override the local policy which is by design in
> Windows. SQL Server simply abides by what Windows enforces.
> --
> Mike Hotek
> MHS Enterprises, Inc
> http://www.mssqlserver.com
>
> "DisgruntledTechGuy" <DisgruntledTechGuy@.discussions.microsoft.com> wrote
in
> message news:12CC258C-C990-47C0-A36D-6EEC39E42A03@.microsoft.com...
>
>sql
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment