RE: User creation - password policy rejection

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

Hi Brian,

Thank you very much, it really was that simple, I had to use both lower and
upper case and numbers all in the password.

Absently mindely I had not added the "everyone" group to my default Group
Policy and as a result the disabling of Password Complexity was not working
when I tried to create a normal user.

Regards,

--
-- Jnr Consultant --


"Brian Delaney" wrote:

It is simple... the password is not complex enough.

http://support.microsoft.com/?kbid=821425
When you set the Passwords must meet complexity requirements policy setting,
and a user logs on to the computer or to a domain and types a password in the
Change Password dialog box that does not meet the complexity requirements,
the user receives the following message:

Your password must be at least x characters; cannot repeat any of your
previous x passwords; must contain capitals, numerals or punctuation; and
cannot contain your account or full name. Please type a different password.
Type a password which meets these requirements in both text boxes.

This message is expected behavior when a user tries to change the password
and the password does not meet the complexity requirements that you set.
However, some of the content of the message may be confusing to some users
because it does not explicitly specify that the password must contain at
least three of the following four character groups:
• English uppercase characters (A through Z)
• English lowercase characters (a through z)
• Numerals (0 through 9)
• Non-alphabetic characters (such as !, $, #, %)

--
Brian Delaney, MCSE


"JnrConsultant" wrote:


I've got a freshly created domain/active directory installation using
Windows Server 2003 Enterprise edition.

I've disabled Password Complexity option under Domain Security and Domain
Controller Security.

Whenever I go to create a new user account, regardless of the combination of
letters and numbers and length I use for the users password (i've tried quite
a few) it stops me with the following message:

"Windows cannot set the password for "username" because: The password does
not meet the password policy requirements. Check the minimum password length,
password copmlexity and password history requirements.

Anyone help with this?

Thanks in advance
--
-- Jnr Consultant --
.

Relevant Pages

  • Re: Password requirements
    ... The default password-complexity settings in Windows 2000 are as follows: ... this setting is disabled in the Default Domain Group Policy ... Contains characters from three of the following four categories: ... Complexity requirements are enforced upon password change or creation. ...
    (microsoft.public.windows.server.active_directory)
  • Re: Group Policy Not Being Applied??
    ... workstations and not on the domain controllers. ... policy. ... Password Must Meet Complexity Requirements: ... characters. ...
    (microsoft.public.win2000.group_policy)
  • RE: User cannot change password
    ... Make sure that the password users give meet the complexity requirements. ... access to network resources is to use secure passwords. ... Minimum Password Length sets the minimum number of characters for a ... characters), which is definitely not a good idea. ...
    (microsoft.public.win2000.active_directory)
  • Re: Can you change the password complexity requirements message?
    ... The new policy works just fine, however, when end users attempt to ... our password complexity requirements does not match our actual ... we require at least 10 characters. ... I assumed the password complexity requirements message read the ...
    (microsoft.public.windows.server.active_directory)
  • Re: User cannot change password
    ... When "Password must meet complexity requirements" policy is enabled, ... Contains characters from three of the following four categories: ... English upper case characters ...
    (microsoft.public.win2000.active_directory)