Skip to content

Windows 7 – How to set up a Password and Account Lockout Policy

14/11/2013

A local password policy can enforce password length and password complexity rules.

Step 1 – Access the Security Policy

Start > Search box “security”

Click on “Local Security Policy”

lsp

This opens

lsa policy

*****

Step 2 – Security Settings

Account Policies > Password Policy

Several options will appear

password policy2

* Minimum Password Length

Double click on minimum password length > set to 12 characters or more

password12

It is better to think of a pass SENTENCE, than a pass WORD.  Longer is better.

* Password must meet Complexity

Complexity enforces number, upper case, lower case and special characters.  It’s a defense against bruteforce hacking.    However, longer passwords are a more robust defense and less frustrating to use (see reference below).  Therefore use a longer passSENTENCE, before enforcing complexity.

Default is Disabled > Enable

enabled

***

Step 3 – Account Lockout

Account lockout policy – Select it

account lockout

Set the Threshold > 5 attempts

account lockout 2

That’s it!!

Nice and easy.

****

Reference:

Password complexity rules more annoying, less effective than lengthy ones

http://arstechnica.com/security/2013/06/password-complexity-rules-more-annoying-less-effective-than-length-ones/

Advertisements
One Comment
  1. bharadwaj krishna permalink

    good

    Like

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: