I have a user whose PC is connected to our domain on Exchange Server, but when he logs on, no password is required. I find this odd because our domain password policy is quite complex and requires passwords to be at least seven characters long. We also force our users to change their passwords every 180 days. How is he able to log onto our Exchange Server?
Implicit logons are in Exchange Server by design. Users should not be challenged for their username and password combination whenever they use Outlook. Ideally, users should not be prompted for a separate logon unless your company has decided to force explicit logons. Password complexity and password policies have nothing to do with implicit versus explicit logon behavior.
Do you have comments on this Ask the Expert Q&A? Let us know.