How to Enforce Password History in Group Policy Editor

Using the Local Group Policy Editor

• 1

  Open the "Start" menu. Type "gpedit.msc" in the "Search" box. Click "gpedit" in the search results.

• 2

  Click the arrow next to "Computer Configuration" in the left-side panel to expand this branch of the console tree. Expand the "Windows Settings" branch. Expand the "Security Settings" branch. Expand the "Account Policies" branch. Click directly on the "Password Policy" folder in the left-side window panel.

• 3

  Double-click the "Enforce password history" policy in the right-side window panel.

• 4

  Enter the number of passwords the group policy should be set to remember. The maximum possible value is 24. The number entered represents not only how many prior user account passwords are remembered, but how many new unique passwords must be created for a user account before an old password can be used again.

• 5

  Click "OK" to deploy the policy. Close the Local Group Policy editor.

Using the Local Security Policy Editor

• 6

  Open the "Start" menu. Type "Local Security Policy" or "secpol.msc" in the "Search" box. Press "Enter" to launch the Local Security Settings editor. This is a subset of the more comprehensive Group Policy module.

• 7

  Click the arrow next to "Account Policies" in the left-side panel to expand this branch of the console tree. Click directly on the "Password Policy" folder in the left-side window panel.

• 8

  Double-click the "Enforce password history" policy in the right-side window panel.

• 9

  Enter the number of passwords the group policy should be set to remember. The maximum possible value is 24. The number entered represents not only how many prior user account passwords are remembered, but how many new unique passwords must be created for a user account before an old password can be used again.

• 10

  Click "OK" to deploy the policy. Close the Local Security Policy editor.