Setting Account Options Thedialog box for the account tab of the user properties is shown in the figure below that helps to change the user Logon name as well as password option and set an expiration date for the account.
There are following account options that are presented in the Account Option list box.
• User must change password at next logon:
This option is selected by default, it allow creating password only one-time that can get the user started with the network.
• User can not change the password:
This option restrict users to change their passwords.
• Password never expires:
Using this option user will never have to change the password because this option avoids the password expiration policy.
• Store the password using reversible encryption:
User should avoid this option because it stores password using an encryption scheme that hackers can easily break.
• Account is disabled:
This option do not allows user to logon, as long as the account remains disabled.
• Smart card is required for interactive logon:
Smart cards are use for the security purpose, if the users computers has the a smart card reader to automatically read security oards then check this option.
• Account is trusted for delegation:
This option specifies that the account is responsible and can set up designation and this usually reserved for administrator accounts.
• Account is sensitive and cannot be delegated:
This option prevents other users from pretend to be this account.
• Use DES encryption types for this account:
This option provides extra security for the application that requires extra security.
• Do not require Kerberos pre-authentication:
This option provides different implementation of the Kerberos protocol.
Reply With Quote
Copyright Techfuels
Bookmarks