Pointless rant

markgm

Diamond Member
Aug 23, 2001
3,291
2
81
<rant>
Your password will expire in 12 days, would you like to change it? IF I WANTED TO CHANGE IT 12 DAYS EARLY SET THE POLICY TO N-12 DAYS FOR THE PASSWORD TO EXPIRE.
</rant>
If only I had access to that domain to do some GP editing. Stupid thing belongs to another team and we just use it to access our customer site.

What a stupid prompt though. Why stop at 2 weeks out? "Thank you for changing your password, your new password will expire in 30 days, would you like to get a leg up and change it now?"
 

rbrandon

Banned
Oct 10, 2002
423
0
0
Originally posted by: markgm
<rant>
Your password will expire in 12 days, would you like to change it? IF I WANTED TO CHANGE IT 12 DAYS EARLY SET THE POLICY TO N-12 DAYS FOR THE PASSWORD TO EXPIRE.
</rant>
If only I had access to that domain to do some GP editing. Stupid thing belongs to another team and we just use it to access our customer site.

What a stupid prompt though. Why stop at 2 weeks out? "Thank you for changing your password, your new password will expire in 30 days, would you like to get a leg up and change it now?"

You won't believe how many idiots ignore the 7 day warning I give them, then they wonder why they cant log in after the password expired. It's there to remind people, but I agree, 12 days is a little too long. If youREALLY hate seeing that message, just change your password and stop bitching.
 

loic2003

Diamond Member
Sep 14, 2003
3,844
0
0
It's in case the user is due to go on holiday for a couple of weeks or whatever. When they returned, their account would be locked out. Mentioning it early can prevent this.

Now you know.

\thread.
 

Originally posted by: loic2003
It's in case the user is due to go on holiday for a couple of weeks or whatever. When they returned, their account would be locked out. Mentioning it early can prevent this.

Now you know.

\thread.
It wouldn't be locked out. It would just say, "Your password has expired. You must now change it."
 

markgm

Diamond Member
Aug 23, 2001
3,291
2
81
Originally posted by: jumpr
Originally posted by: loic2003
It's in case the user is due to go on holiday for a couple of weeks or whatever. When they returned, their account would be locked out. Mentioning it early can prevent this.

Now you know.

\thread.
It wouldn't be locked out. It would just say, "Your password has expired. You must now change it."

Exactly. That's what annoys me about this prompt.
 

Jzero

Lifer
Oct 10, 1999
18,834
1
0
Originally posted by: jumpr
Originally posted by: loic2003
It's in case the user is due to go on holiday for a couple of weeks or whatever. When they returned, their account would be locked out. Mentioning it early can prevent this.

Now you know.

\thread.
It wouldn't be locked out. It would just say, "Your password has expired. You must now change it."

Some services do not support password changes and simply kick you out with a cryptic error. Among them are Outlook Web Access and possibly VPN depending on your platform. Also, in my experience changing your password when logged on to the MS RRAS VPN causes nothing but trouble. For some reason the new password is not communicated back to the DC.

It takes two seconds to change the password. Instead of clicking through the prompt for two weeks and then getting screwed when you are at a client site on the 15th day...just CHANGE IT!
 

spherrod

Diamond Member
Mar 21, 2003
3,897
0
0
www.steveherrod.com
Originally posted by: Jzero
Originally posted by: jumpr
Originally posted by: loic2003
It's in case the user is due to go on holiday for a couple of weeks or whatever. When they returned, their account would be locked out. Mentioning it early can prevent this.

Now you know.

\thread.
It wouldn't be locked out. It would just say, "Your password has expired. You must now change it."

Some services do not support password changes and simply kick you out with a cryptic error. Among them are Outlook Web Access and possibly VPN depending on your platform. Also, in my experience changing your password when logged on to the MS RRAS VPN causes nothing but trouble. For some reason the new password is not communicated back to the DC.

It takes two seconds to change the password. Instead of clicking through the prompt for two weeks and then getting screwed when you are at a client site on the 15th day...just CHANGE IT!

Yep, just change it when prompted - end of message!
 

markgm

Diamond Member
Aug 23, 2001
3,291
2
81
I'd just change it, but with a million different logons (each expire at a different rate) I'd be changing a different password every other day. I like to keep them all somewhat similar between changes. That way when I *have* to make a change, I can change them all and be good for another 15 or so days.
 

Phoenix86

Lifer
May 21, 2003
14,644
10
81
Not everyone logs in every day, some people take vacations. Just because you can't think of good reasons doesn't mean they don't exist.

/thread.
 

loic2003

Diamond Member
Sep 14, 2003
3,844
0
0
Originally posted by: markgm
I'd just change it, but with a million different logons (each expire at a different rate) I'd be changing a different password every other day. I like to keep them all someone similar between changes. That way when I *have* to make a change, I can change them all and be good for another 15 or so days.

Get friendly with your IT chap there and ask him to set your logon password to not expire.
One less thing to remember!
 

VTHodge

Golden Member
Aug 3, 2001
1,575
0
0
What really annoys me is that I have three different passwords (Windows, Email, Database) and they all have different rules. One of them will just say "password is not sufficiently complex". WFT does that mean? And I can't have any consecutive numbers. It takes me forever to put together something that satisfies the rules for all three. (I know I could have different passwords for each, but I'm not going to because I won't remember, and I don't even really need the security).
 
Aug 23, 2000
15,509
1
81
It's because idiot users consistantly ignore the message to change their passwords, even when the message comes up and says "Your password will expire today, you must change your password" They always hit cancel, and then I have to hear it from them cause they can't log in.
 

Doctorweir

Golden Member
Sep 20, 2000
1,689
0
0
Originally posted by: markgm
<rant>
Your password will expire in 12 days, would you like to change it? IF I WANTED TO CHANGE IT 12 DAYS EARLY SET THE POLICY TO N-12 DAYS FOR THE PASSWORD TO EXPIRE.
</rant>
If only I had access to that domain to do some GP editing. Stupid thing belongs to another team and we just use it to access our customer site.

What a stupid prompt though. Why stop at 2 weeks out? "Thank you for changing your password, your new password will expire in 30 days, would you like to get a leg up and change it now?"

You're posting from work aren't ya? Please do not use company assets for private purposes. Log off ATOT now... :p
Btw, can someone tell the forum admin to implement a 14-day password expiry for the forum passwords to improve security? Thanks! ;)
 

rbrandon

Banned
Oct 10, 2002
423
0
0
Originally posted by: VTHodge
What really annoys me is that I have three different passwords (Windows, Email, Database) and they all have different rules. One of them will just say "password is not sufficiently complex". WFT does that mean? And I can't have any consecutive numbers. It takes me forever to put together something that satisfies the rules for all three. (I know I could have different passwords for each, but I'm not going to because I won't remember, and I don't even really need the security).

You may THINK you don't need the security, but your IT department KNOWS you do. The business environment is different than your home network of 3 computers. In the corporate world, security > what you think you need.
 

blakeatwork

Diamond Member
Jul 18, 2001
4,113
1
81
suck it up buttercup...

If the net admins decide to implement a policy of 32-character passwords, with no repeating characters, guess what, you better have a 32 character password, with no repeating characters.

if you want to make policy changes, get hired by that department, work your way to the top, and make sweeping, empire-creating like changes.

 

VTHodge

Golden Member
Aug 3, 2001
1,575
0
0
Originally posted by: rbrandon
Originally posted by: VTHodge
What really annoys me is that I have three different passwords (Windows, Email, Database) and they all have different rules. One of them will just say "password is not sufficiently complex". WFT does that mean? And I can't have any consecutive numbers. It takes me forever to put together something that satisfies the rules for all three. (I know I could have different passwords for each, but I'm not going to because I won't remember, and I don't even really need the security).

You may THINK you don't need the security, but your IT department KNOWS you do. The business environment is different than your home network of 3 computers. In the corporate world, security > what you think you need.

What I meant was that I didn't need the increased security of having a different password for each system. And I don't mind have rules for passwords, but go ahead and make them the same for each system.