Avatar of Rowdyone52
Rowdyone52

asked on 

Custom Password Filter Windows 2003

Experts,

I have written a custom password filter dll that I would like to deploy on a Windows 2003 domain (running in native mode).  I place the dll in the system32 folder and then I edit the Notifications Packages value and add the name of my dll.  I reboot the server but the Lsass.exe process does not incorporate my dll because I can still delete it after the reboot.  What have I done wrong?  For testing purposes I only deployed this dll to one of my domain controllers but I've made sure that in AD sites and servies that my subnet logs into that server.
Active DirectoryWindows Server 2003

Avatar of undefined
Last Comment
Rowdyone52
Avatar of Nirmal Sharma
Nirmal Sharma
Flag of United States of America image

By default, Windows uses Passfilt.dll to filter passwords. To prevent windows from using this dll and use your own created you need to set a policy NOT to require complexity. This setting can be found at Windows Security/Security Settings/Password Policy/

*Password Must Meet Complexity requirements" - Change it to DISABLED

You can also set other passwords policies to null if you're password filter do the same.
ASKER CERTIFIED SOLUTION
Avatar of Nirmal Sharma
Nirmal Sharma
Flag of United States of America image

Blurred text
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
Avatar of Rowdyone52
Rowdyone52

ASKER

Is there no way to do both in Windows 2003?  I have successfully used both the microsoft complexity requirements and my own custom dll together in Windows XP.
Avatar of Nirmal Sharma
Nirmal Sharma
Flag of United States of America image

Yes, you can.

*Password Must Meet Complexity requirements" - Change it to Enable.
Avatar of Rowdyone52
Rowdyone52

ASKER

Then how do I incorporate my DLL into the process?
Avatar of Rowdyone52
Rowdyone52

ASKER

Ok, I have downloaded the passfilt.c example and I built a DLL from it, then I followed the instructions here:

http://msdn2.microsoft.com/en-us/library/ms721766.aspx

but the OS doesn’t appear to be using the DLL at all.  What did I do wrong?  Am I building the DLL incorrectly?
Windows Server 2003
Windows Server 2003

Windows Server 2003 was based on Windows XP and was released in four editions: Web, Standard, Enterprise and Datacenter. It also had derivative versions for clusters, storage and Microsoft’s Small Business Server. Important upgrades included integrating Internet Information Services (IIS), improvements to Active Directory (AD) and Group Policy (GP), and the migration to Automated System Recovery (ASR).

129K
Questions
--
Followers
--
Top Experts
Get a personalized solution from industry experts
Ask the experts
Read over 600 more reviews

TRUSTED BY

IBM logoIntel logoMicrosoft logoUbisoft logoSAP logo
Qualcomm logoCitrix Systems logoWorkday logoErnst & Young logo
High performer badgeUsers love us badge
LinkedIn logoFacebook logoX logoInstagram logoTikTok logoYouTube logo