I was asked to find a way to set up all PCs in the company to prompt password change once a month. All PCs have Windows 7 Home Premium (majority) or Windows 8.1, and there is no such option on user setting. Is there any way to set it up on Windows, or by any 3rd party software?
-
You heard it here first: Black Friday 2024 has arrived!
How to prompt password reset every month for Windows logon?
- Thread starter MKBL
- Start date
Solution
bicycle_repair_man
Splendid
- Jan 10, 2014
- 5,751
- 2
- 28,960
I believe this function is only available in a domain environment using Group Policy, and if the clients have Windows 7 Home Premium installed, they can't be joined to a domain.
Ijack
Splendid
- Jul 30, 2008
- 7,098
- 0
- 28,010
It's pretty simple, and is all explained here: http://technobloggings.blogspot.co.uk/2011/12/windows-7-home-premium-unlucky-view.html
Once you have done the first 50 machines (if you have that many) you will appreciate the benefits of using a Windows Server domain - you would only have to define the policy on the server, and could apply different policies to different groups of computers. This is only one of the many advantages of running a Windows domain
Once you have done the first 50 machines (if you have that many) you will appreciate the benefits of using a Windows Server domain - you would only have to define the policy on the server, and could apply different policies to different groups of computers. This is only one of the many advantages of running a Windows domain
Tom Tancredi
Judicious
- May 9, 2013
- 4,997
- 0
- 32,960
I think one question NOT addressed to the OP is : WHY? Why are you mandating a huge inconvenience (requiring 12 unique passwords a year) to the end users? Even in a domain environment, it is normally at the maximum every three months, and that is in high end secure facilities that include many database systems, etc. that are also 'synch' with the change over (think Wells Fargo, CitiCorp, etc.). SMBs (small and medium business) should be very security conscious as they have alot more risk to any losses, but honestly passwords are not the main form of 'hacking' if that is the concern. Adding another 'burden' to the daily demands of your employees impacting their performance AND unnecessarily keeping yourself / whomever busy constantly resetting passwords. Lastly, and of biggest concern is, you / whomever is responsible for 'IT' isn't really a qualified IT Administrator, or you / they would realize that this entire thought was bogus, as I would almost guarantee ALL those accounts of those employees (being 'Home Premium edition identifies you probably just bought them 'off the shelf' at CostCo / etc. 'as needed') are using ADMIN accounts, which changing the password again has no effect, as any of them can just go in and change things 'as they want' because THEY are the GODs over the computers not you.
This of course completely IGNORES on EVERY single machine (say 50) each one has its manually enter 'accounts' (say 20 different people, just 'in case' they need to 'get on' the machine, or say to account for all the Managers/Supervisors/etc. that 'need' to be able to get onto ANY system they want) and once they change a password on one machine how does that affect the other 10, 20 or even ALL 50 other PCs? It doesn't, they have to walk around to EVERY single machine and change the password on EACH individual one MANUALLY. So just thinking 50 machines 20 people, you talking 1000 (50x20) changes to be done EVERY 30 days, just so they don't get locked out of each 'system' they potentially could use with the wrong password. To put a 'cost' behind it, lets even cut that in half (500) and IF it takes around 15 minutes of logging in with the 'correct password' then coming up with a new password they 'didn't use before' and isn't a easy to guess password (111111, abcdefg, MyName, etc.) which is still 7500 minutes, or 125 hours, or two whole days EVERY MONTH no one does ANYTHING else but just spending the ENTIRE work day just changing passwords. This ALSO is just the DESKTOP PCs, NOT including any 'programs', databases, etc. you would also have to setup the same way or 'who knows what password in on any of these things anymore?'.
If your above 20 people it is time to consider Domains and at the very least 'outsourcing' a IT solution to your business.
This of course completely IGNORES on EVERY single machine (say 50) each one has its manually enter 'accounts' (say 20 different people, just 'in case' they need to 'get on' the machine, or say to account for all the Managers/Supervisors/etc. that 'need' to be able to get onto ANY system they want) and once they change a password on one machine how does that affect the other 10, 20 or even ALL 50 other PCs? It doesn't, they have to walk around to EVERY single machine and change the password on EACH individual one MANUALLY. So just thinking 50 machines 20 people, you talking 1000 (50x20) changes to be done EVERY 30 days, just so they don't get locked out of each 'system' they potentially could use with the wrong password. To put a 'cost' behind it, lets even cut that in half (500) and IF it takes around 15 minutes of logging in with the 'correct password' then coming up with a new password they 'didn't use before' and isn't a easy to guess password (111111, abcdefg, MyName, etc.) which is still 7500 minutes, or 125 hours, or two whole days EVERY MONTH no one does ANYTHING else but just spending the ENTIRE work day just changing passwords. This ALSO is just the DESKTOP PCs, NOT including any 'programs', databases, etc. you would also have to setup the same way or 'who knows what password in on any of these things anymore?'.
If your above 20 people it is time to consider Domains and at the very least 'outsourcing' a IT solution to your business.
Ijack
Splendid
- Jul 30, 2008
- 7,098
- 0
- 28,010
It's not that unreasonable a request, depending upon the circumstances and the nature of the business. As there is no domain involved I think it's a fairly safe bet that users and computers are mapped one-to-one so there is no question of having to change the password on 50 computers.
Monthly password changes are not unreasonable, particularly in an open environment or one dealing with financial matters.
We don't know the status of this guy in the organization, but he doesn't sound like management level just some poor sod who has been landed with "looking after the computers". Sure there are much better solutions to the problem, mostly involving large sums of money in difficult times for companies.
Give the poor guy a break. He's just trying to earn a crust. Maybe one day he'll be in a position to tell management that their idea is stupid, but perhaps not just yet.
Monthly password changes are not unreasonable, particularly in an open environment or one dealing with financial matters.
We don't know the status of this guy in the organization, but he doesn't sound like management level just some poor sod who has been landed with "looking after the computers". Sure there are much better solutions to the problem, mostly involving large sums of money in difficult times for companies.
Give the poor guy a break. He's just trying to earn a crust. Maybe one day he'll be in a position to tell management that their idea is stupid, but perhaps not just yet.
Tom Tancredi
Judicious
- May 9, 2013
- 4,997
- 0
- 32,960
I am sorry I have to agree with the Mod's apt tag that IS the solution here:
Identify the problem before applying a solution
Just because the OP CAN do something doesn't mean it will even succeed (as I pointed out bet you everyone is has local Admin rights, and in just a 'couple of clicks' completely bypass this 'solution'). What is the REAL problem, what is this 'solution' trying to fix. To me personally this sounds like more the most 'familiar' person with the computers has a idea that doesn't cost 'anything' (typical SMB mindset) rather then an IT person (certified, trained, experienced).
My post by the way, was to give ammunition to the 'poor sod' OP that can go back and make those valid points, with 'simple math' any Exec / Boss can figure out on their own. To me this seems the 'crux point' that the company MANAGEMENT needs to LEAD the team into the NEXT LEVEL and start to plan out IT as any infrastructure plan (Basic Business Class 101) with both Risk Analysis as well as Budgetary consideration. Just like if they were planning to buy 10 more 'trucks for delivery' but don't have a secure parking lot to house them, then post questions about stuff being 'towed off' from parking on the street, that isn't the real problem. The problem is the need to invest into proper infrastructure if they wish to 'move up', and during difficult times for companies is the BEST time to expand. Costs are lower, competition is less, and most of all it is these stakeholders that can set the terms, rather then be at the whim of those more knowledgeable of the services they will provide and 'upsell' or 'oversell' unneeded and unwarranted 'extras'.
Identify the problem before applying a solution
Just because the OP CAN do something doesn't mean it will even succeed (as I pointed out bet you everyone is has local Admin rights, and in just a 'couple of clicks' completely bypass this 'solution'). What is the REAL problem, what is this 'solution' trying to fix. To me personally this sounds like more the most 'familiar' person with the computers has a idea that doesn't cost 'anything' (typical SMB mindset) rather then an IT person (certified, trained, experienced).
My post by the way, was to give ammunition to the 'poor sod' OP that can go back and make those valid points, with 'simple math' any Exec / Boss can figure out on their own. To me this seems the 'crux point' that the company MANAGEMENT needs to LEAD the team into the NEXT LEVEL and start to plan out IT as any infrastructure plan (Basic Business Class 101) with both Risk Analysis as well as Budgetary consideration. Just like if they were planning to buy 10 more 'trucks for delivery' but don't have a secure parking lot to house them, then post questions about stuff being 'towed off' from parking on the street, that isn't the real problem. The problem is the need to invest into proper infrastructure if they wish to 'move up', and during difficult times for companies is the BEST time to expand. Costs are lower, competition is less, and most of all it is these stakeholders that can set the terms, rather then be at the whim of those more knowledgeable of the services they will provide and 'upsell' or 'oversell' unneeded and unwarranted 'extras'.
- Status
TRENDING THREADS
-
-
Question How to tell the psu wattage without a label on the psu
- Started by Jim009
- Replies: 7
-
Facebook
Twitter
Instagram