How To Check Fine Grained Password Policy Is Applied?
Share
Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
To check if a Fine Grained Password Policy (FGPP) has been applied, it can be checked by running the dsget on a user account:
1. Open Command Prompt
2. Run the command “dsget user <username> -pwdpolicysubent”
3. Look for the PWDSUBENT value which will be set to the GUID of the FGPP in case it has been applied.
1. Login to Active Directory.
2. Navigate to Domain Controllers > System, and then click on Local Security Policy.
3. Select Security Settings and then scroll down to Account Policies.
4. Check the Password Policy (under Account Lockout Policy, for example), and if fine grained password policies are enabled, you will see a list of options related to them.
5. You can then double–click on each one to view the settings.