Internet / Network Security
  1. Home
  2. Computing & Technology
  3. Internet / Network Security

Password Policy: Enforce Password History
Configuring Vista Password Policy Settings

From Tony Bradley, CISSP-ISSAP, for About.com

See More About:
This security setting determines the number of unique new passwords that have to be associated with a user account before an old password can be reused. The value must be between 0 and 24 passwords.

This policy enables enhanced security by ensuring that old passwords are not simply reused every time a user is required to periodically change or update their password.

Defaults:

  • 24 on domain controllers
  • 0 on stand-alone servers.

Note: By default, PC's on a network domain follow the configuration of their domain controllers.

Enforce Password History should be used in conjunction with the Minimum Password Age policy setting to ensure that users do not simply create password after password immediately in order to bypass the Enforce Password History setting and reuse an old password sooner. For information about the minimum password age security policy setting, see Minimum Password Age.

More Internet / Network Security Quick Tips
Explore Internet / Network Security
About.com Special Features
Family Tech Center

Stay connected and entertained with reviews on tips on the latest HDTVs, cellphones and more. More >

Connect Your Home Computers

Easy ways to connect two computers for networking purposes. More >

Internet / Network Security
  1. Home
  2. Computing & Technology
  3. Internet / Network Security
  4. Basic Security
  5. Secure Your Windows PC
  6. Enforce Password History: Explanation of Windows Policy Setting 'Enforce Password History'

©2009 About.com, a part of The New York Times Company.

All rights reserved.