Sarab_SQLGeek (8/8/2009)
if we talk about SQL Server 2005, there you can set the option by opting ENFORCE PASSWORD POLICY.by opting this you are actually applying group policy of OS to SQL Server Logins.
For example:
lets assume you have created a group policy on your windows server that the password lenght should be minimum 6 characters and the accout should get locked after 3 unseccessfull attempts.
By doing this a windows login will automatically have this policy applied.
and while creating a SQL Server login if you opt for ENFORCE PASSWORD POLICY it will apply the same policy on sql server login and you have to provide atleast 6 characters of password with same lock out setting.
This doesn't happen on my system (SS 2008 on Windows Server 2008 R2). We have password policies enabled on the domain, including lockouts, but the sa account never gets locked out, no matter how many attempts are made. I checked sa properties in SSMS and Enforce Password Policy is checked.
However I did read somewhere that lockouts were only supported in the Enterprise Edition. We have Standard. But there's no mention of this detail in the docs. So can somebody tell me, is this true or not? (And if not, why else wouldn't it work?)
Thanks.