Ordinary users have problem changing passwords vis-a-vis Complexity Requirements

[Jake]

Hi

We are using what we're certain is a default domain Group Policy for password security. eg

Minimum Password Length - 7 Characters
Password must meet complexity requirements - enabled

However when users press CTRL-ALT-DELETE, and choose change password and input a password which >>does<< meet the above requirements, the system complains that it's not 'complex' enough.

But here's the rub - when an 'administrator' changes the password for the same user - with the same password - the system accepts it.

What gives? Please could someone more enlightened than me, explain?

TIA

(We are using server 2003 with XP clients.)


Jake

 

[Joe Richards [MVP]]

Administrative reset usually bypasses the complexity requirements but not the length requirements.

What is an example of a password you are using that doesn't work? Also do you have a password history enabled? Is the
password one of the previous passwords?

--
Joe Richards
www.joeware.net

--

Hi

We are using what we're certain is a default domain Group Policy for password security. eg

Minimum Password Length - 7 Characters
Password must meet complexity requirements - enabled

However when users press CTRL-ALT-DELETE, and choose change password and input a password which >>does<< meet the above
requirements, the system complains that it's not 'complex' enough.

But here's the rub - when an 'administrator' changes the password for the same user - with the same password - the
system accepts it.

What gives? Please could someone more enlightened than me, explain?

TIA

(We are using server 2003 with XP clients.)


Jake

 

[Jake]

Joe

we fell foul of the minimum password age of 1 day.

Once we'd tried it with '0' we could change passwds at will

Jake