El TecnoBaúl de Kiquenet

Kiquenet boring stories

Archive for 29 abril 2014

Modify Local Security Policy

Posted by kiquenet en 29 abril 2014

In Windows Server 2012.

In Administrative Tools folder, double click the Local Security Policy icon, expand Account Policies and click Password Policy.

In the right pane double click Password must meet complexity requirements and set it to Disabled. Click OK to save your policy change.

Optionally you can also choose to never let passwords expire. To do this open the Maximum password age policy and set set the value to 0. Click OK to apply the change.

Note: Just make sure to update the GP. go to Command Prompt and type GPUPDATE /FORCE

Programmatically:

http://stackoverflow.com/questions/23260656/modify-local-security-policy-using-powershell

secedit /export /cfg c:\secpol.cfg
(gc C:\secpol.cfg).replace("PasswordComplexity = 1", "PasswordComplexity = 0") | Out-File C:\secpol.cfg
secedit /configure /db c:\windows\security\local.sdb /cfg c:\secpol.cfg /areas SECURITYPOLICY
rm -force c:\secpol.cfg -confirm:$false


http://vlasenko.org/2011/04/27/removing-password-complexity-requirements-from-windows-server-2008-core/
secedit /export /cfg c:\new.cfg
${c:new.cfg}=${c:new.cfg} | % {$_.Replace('PasswordComplexity=1', 'PasswordComplexity=0')}
secedit /configure /db $env:windir\security\new.sdb /cfg c:\new.cfg /areas SECURITYPOLICY
del c:\new.cfg
 
Referencias:
http://www.win2012workstation.com/password-restrictions/
http://windowsitpro.com/blog/securing-services-powershell
http://sqldbamusings.blogspot.com.es/2012/03/powershell-adding-accounts-to-local.html
http://code.msdn.microsoft.com/windowsdesktop/Add-log-on-as-a-service-a64dd63c
 

Posted in PowerShell, Scripts, Trucos, Windows | Etiquetado: , | Leave a Comment »