Although we are using a group policy to define password restrictions in AD, we have some application servers that are more strict such as requiring the password to be less than 10 characters. Is it possible to implement our own set of password rules as follows:
Between 6 and 10 characters
Must contain at least 1 upper case character, at least 1 lower case character and a number
Must not start with a number.
At a minimum I would like to change the prompt when it is time to change the password, stating these restrictions.