Export (0) Print
Expand All
This topic has not yet been rated - Rate this topic

RefusePasswordChange

HKLM\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters

Data type

Range

Default value

REG_DWORD

0 | 1

0

Description

Prevents a domain controller from accepting requests from workstations to change their computer account passwords.

By default, Windows 2000 Professional systems automatically request a change to their computer account passwords at regular intervals (as specified in the value of the MaximumPasswordAge entry). To direct the system to reject these changes each time they arrive, set the value of RefusePasswordChange to 1.

Value

Meaning

0

Accept changes to workstation computer account passwords.

1

Reject changes to workstation computer account passwords.

Note Image Note

In Windows 2000, the Net Logon service manages replication only if the replication involves servers running Windows NT 4.0 or earlier. Net Logon for Windows 2000 does not manage replication between two servers running Windows 2000.

Windows 2000 does not add this entry to the registry. You can add it by editing the registry or by using a program that edits it.

Tip Image Tip

To prevent a workstation from sending a password change to the domain controller, set the value of the DisablePasswordChange entry to 1.

Caution Image Caution

Disabling automatic password changes can make the system more vulnerable to malicious access. Frequent password changes can be a significant safeguard for your system.

Related Entries

Page Image

DisablePasswordChange

Page Image

MaximumPasswordAge

Did you find this helpful?
(1500 characters remaining)
Thank you for your feedback
Show:
© 2014 Microsoft. All rights reserved.