RefusePasswordChange

HKLM\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters

Data type Range Default value
REG_DWORD 0 | 1 0

Description

Prevents domain controllers from accepting requests from workstations to change their computer account passwords.

By default, Windows 2000 Professional systems automatically request a change to their computer account passwords at regular intervals (as specified in the value of MaximumPasswordAge). By setting the value of this entry to 1, you direct the system to reject the change each time it arrives.

Value Meaning
0 Accept changes to workstation computer account passwords.
1 Reject changes to workstation computer account passwords.

Note Image Note

For Windows 2000, Net Logon manages replication only when it involves servers running Windows NT 4.0 or earlier. Net Logon for Windows 2000 does not manage replication between two servers running Windows 2000.

Windows 2000 does not add this entry to the registry. You can add it by editing the registry or by using a program that edits it.

Tip Image Tip

To prevent a workstation from sending a password change to the domain controller, set the value of DisablePasswordChange to 1.

Caution Image Caution

Disabling automatic password changes can make the system more vulnerable to malicious access. Frequent password changes can be a significant safeguard for your system.

Related Entries

Page Image

Page Image