asked on

Complex Passwords

I am trying to enforce complex passwords in native AD environment with Windows 2003 servers.

I cannot get this to work. I cannot seem to get it to enforce even the simplest thing, 8 characters. I have gone into the group policy for the domain and then added a policy called complex password policy. I went into the machine settings and I changed the settings for the password policy in security, and then moved the new policy up above the default group poicy for the domain. I have checked the OU's and made sure the GPO for those are set to "not defined" and still it does not enforce the perameters when I tell it to change a users password?

Do you have any suggestions.

ASKER CERTIFIED SOLUTION

Jay_Jay70

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

Reginald Meyer

ASKER

I created a GPO Called complexpassword policy under the properties of the domain. This is what I got when I ran the gpresult.

COMPUTER SETTINGS
------------------
CN=DC2,OU=Domain Controllers,DC=candyusa,DC=org
Last time Group Policy was applied: 5/11/2006 at 7:48:21 AM
Group Policy was applied from: dc2.candyusa.org
Group Policy slow link threshold: 500 kbps
Domain Name: CANDYUSA
Domain Type: Windows 2000

Applied Group Policy Objects
-----------------------------
ComplexPasswordPolicy
Default Domain Controllers Policy
Default Domain Policy

The following GPOs were not applied because they were filtered out
-------------------------------------------------------------------
Local Group Policy
Filtering: Not Applied (Empty)

Reginald Meyer

ASKER

I just got it to work! I guess it needed more time to filter or I changed the OU's accordingly.

Jay_Jay70

yah i was gonna suggest a gpupdate /force but it appears you win :)