RefusePasswordChange
HKLM\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters
Data type |
Range |
Default value |
---|---|---|
REG_DWORD |
0 | 1 |
0 |
Description
Prevents a domain controller from accepting requests from workstations to change their computer account passwords.
By default, Windows 2000 Professional systems automatically request a change to their computer account passwords at regular intervals (as specified in the value of the MaximumPasswordAge entry). To direct the system to reject these changes each time they arrive, set the value of RefusePasswordChange to 1.
Value |
Meaning |
---|---|
0 |
Accept changes to workstation computer account passwords. |
1 |
Reject changes to workstation computer account passwords. |
Note
In Windows 2000, the Net Logon service manages replication only if the replication involves servers running Windows NT 4.0 or earlier. Net Logon for Windows 2000 does not manage replication between two servers running Windows 2000.
Windows 2000 does not add this entry to the registry. You can add it by editing the registry or by using a program that edits it.
Tip
To prevent a workstation from sending a password change to the domain controller, set the value of the DisablePasswordChange entry to 1.
Caution
Disabling automatic password changes can make the system more vulnerable to malicious access. Frequent password changes can be a significant safeguard for your system.
Related Entries