Greetings!
Our domain functional level is 2003. We have found some info about fine-grained password requiring to upgrade domain level to 2008. We would like to avod this because of some AIX/samba servers.
The idea (and if it's possible)?
Is it possible to "throw out" password settings from DEFAULT DOMAIN POLICY and create NEW policy which would contain sth like (POLICY1 - NORMAL PASSWORD POLICY - 6 character) and put all the authenticated users there...
then create another policy (POLICY2 - COMPLEXIVE PASSWORD POLICY - 10 characters) put explicit users to comply with that policy and put DENY thoose users in 1st policy?
With best regards,
bostjanc