Solved

Password Policy - Alphanumeric complexity (but no symbols)

Posted on 2003-12-08
3
969 Views
Last Modified: 2013-12-04
Hi all,

I'm wondering if the following is possible:

I have created a default password policy with minimum length, password history, minimum and maximum password age all set appropriately.

I wish to edit the password complexity setting only to require the following:

 - I require a password that requires both letters and numbers (alphanumeric), however I do not want to request to use symbols.  By default, the complexity setting (when enabled) requires letters, numbers and symbols....I only want to require letters and numbers.  

Can this be done?
Thanks in advance.
250 points up for grabs.

0
Comment
Question by:adampalmer
3 Comments
 
LVL 10

Accepted Solution

by:
BloodRed earned 250 total points
ID: 9897081
This link explains how to develop and implement a custom GINA DLL file so you can specify password requirements.

http://msdn.microsoft.com/library/default.asp?url=/library/en-us/security/security/winlogon_and_gina.asp
0
 
LVL 83

Expert Comment

by:oBdA
ID: 9897656
Have a look at the "Password Policy Enforcer":
Password Policy Enforcer: Overview
http://www.anixis.com/products/ppe/default.htm
0
 
LVL 6

Expert Comment

by:Joseph_Moore
ID: 9917760
My company uses a product called P-Synch that manages the password complexity for our various systems. Windows, Solaris, Linux, Lotus Domino, are all controlled by P-Synch. It synchronizes passwords for your different user accounts across all the platforms, so I have the same password everywhere. And it has its own complexity filter that can be as crazy or  easy as you would like. Custom dictionary files, all types of combinations for alpha/numeric/symbol/case sensitivity.
http://www.psynch.com/
I like it, and it was easy to install on my Windows servers. It runs on a central server, and you have to register a .DLL on your Windows domain controllers.
0

Featured Post

Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Security measures require Windows be logged in using Standard User login (not Administrator).  Yet, sometimes an application has to be run “As Administrator” from a Standard User login.  This paper describes how to create a shortcut icon to launch a…
Recently, I read that Microsoft has analysed statistics for their security intelligence report. It revealed: still, the clear majority of windows users do their daily work as administrator. An administrative account is a burden, security-wise. My ar…
This is a video that shows how the OnPage alerts system integrates into ConnectWise, how a trigger is set, how a page is sent via the trigger, and how the SENT, DELIVERED, READ & REPLIED receipts get entered into the internal tab of the ConnectWise …
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

914 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now