Read PasswordComplexity PasswordHistorySize and similar values from the register.

Agreed, or try to script something like Secedit.exe... http://www.microsoft.com/windowsxp/home/using/productdoc/en/default.asp?url=/windowsxp/home/using/productdoc/en/secedit_cmds.asp
secedit /analyze
Syntax
secedit /analyze /db filename [/cfg filename] [/log filename] [/quiet]
Parameters
/db filename
    Required. Specifies the path and file name of a database that contains the stored configuration against which the analysis will be performed. If filename specifies a new database, the /cfg filename command-line option must also be specified.
/cfg filename
    Specifies the path and file name for the security template that will be imported into the database for analysis. This command-line option is only valid when used with the /db parameter. If this is not specified, the analysis is performed against any configuration already stored in the database.
/log filename
    Specifies the path and file name of the log file for the process. If this is not provided, the default log file is used.
/quiet
    Suppresses screen and log output. You can still view analysis results by using Security Configuration and Analysis.
secedit /configure
Configures system security by applying a stored template.
Syntax
secedit /configure /db filename [/cfg filename ] [/overwrite][/areas area1 area2...] [/log filename] [/quiet]
Parameters
/db filename
    Required. Provides the file name of a database that contains the security template that should be applied.
/cfg filename
    Specifies the file name of the security template that will be imported into the database and applied to the system. This command-line option is only valid when used with the /db parameter. If this is not specified, the template that is already stored in the database is applied.
/overwrite
    Specifies whether the security template in the /cfg parameter should overwrite any template or composite template that is stored in the database instead of appending the results to the stored template. This command-line option is only valid when the /cfg parameter is also used. If this is not specified, the template in the /cfg parameter is appended to the stored template.
/areas area1 area2...
    Specifies the security areas to be applied to the system. If an area is not specified, all areas are applied to the system. Each area should be separated by a space.
    Area name       Description
    SECURITYPOLICY       Local policy and domain policy for the system, including account policies, audit policies, and so on.
    GROUP_MGMT       Restricted group settings for any groups specified in the security template
    USER_RIGHTS       User logon rights and granting of privileges
    REGKEYS       Security on local registry keys
    FILESTORE       Security on local file storage
    SERVICES       Security for all defined services
/log filename
    Specifies the file name of the log file for the process. If it is not specified, the default path is used.
/quiet
    Suppresses screen and log output.
secedit /export
Exports a stored template from a security database to a security template file.
Syntax
secedit /export [/mergedpolicy] [/DB filename] [/CFG filename] [/areas area1 area2...] [/log filename] [/quiet]
Parameters
/mergedpolicy
    Merges and exports domain and local policy security settings.
/db filename
    Specifies the database file that contains the template that will be exported. If the name of a database file is not provided, the system policy database is used.
/CFG filename
    Specifies the file name where the template should be saved.
/areas area1 area2...
    Specifies the security areas to be exported to a template. If an area is not specified, all areas are exported. Each area should be separated by a space.
    Area name       Description
    SECURITYPOLICY       Specifies local policy and domain policy for the system, including account policies, audit policies, and so on.
    GROUP_MGMT       Specifies restricted group settings for any groups specified in the security template.
    USER_RIGHTS       Specifies user logon rights and granting of privileges
    REGKEYS       Specifies the security on local registry keys
    FILESTORE       Specifies the security on local file storage
    SERVICES       Specifies security for all defined services
/log filename
    Specifies the file name of the log file for the process. If not specified, the default path is used.
/quiet
    Suppresses screen and log output.

secedit /validate

======
Here are a few reg keys...

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
HKLM\system\currentcontrolset\services\eventlog
-rich

Atleast for some of the values you are looking for, try References in the Active DS type Library and use the following code as needed:

Dim owinnt As ActiveDs.IADs
Dim age_max As Long
Dim age_pwd As Long
Dim date_expi As String
Dim MinLength As Long
Dim CompName as string
Dim User as string

Compname = "<ComputerName>"
User = "<username>"


     On Error Resume Next
    Set owinnt = CreateObject("WinNT://" & Compname & "/" & User)
   
    If Err = 429 Then
        ' login inexistant
        MsgBox "The login " & User & " Does not exist in the Domain: " & strcomputer, vbCritical, "LOGIN INCONNU"
        On Error GoTo 0
    Else
        ' Possible Properties are: LoginHours, Description, LoginScript, FullName, AccountExpirationDate
        ' BadPasswordAttempts, HomeDirDrive, HomeDirectory, LastLogin, LastLogoff, PasswordHistoryLength, LoginWorkstations
        ' MaxLogins, MaxPasswordAge, MaxStorage, MinPasswordAge, MinPasswordLength, PasswordAge, PasswordExpired
        On Error GoTo 0
       
        age_max = CLng(owinnt.Get("MaxPasswordAge")) / 60 / 60 / 24 ' Period of Validity of the password
        MinLength = CLng(owinnt.Get("minPasswordLength"))
       
     MsgBox "Maximum Password Age has been set to: " & age_max
     MsgBox "Mininum Password Length has been set to: " & MinLength
               
    End If