How can I change password complexity so that password must contain characters from all four categories

Normally when you activate "password complexity" in a windows domain you demand that the password contains characters from three out of four categories (UPPERCASER, lowercase, numbers, numbers and non-alfabetic characters).

Is there a way to change it so that all four categories must be met?
Who is Participating?
Gideon7Connect With a Mentor Commented:
The only solution I can think of is to write your own credential provider (CP) to enforce your custom password-complexity policy.
A good overview on writing a CP can be found at  See especially the discussion of a "hybrid implementation", which describes how to customize the existing default CP to fit your needs.
MightySWConnect With a Mentor Commented:
Sorry, no.  This is complexity and you cannot enforce this on users.

This is by design.

Know you didn't want to hear this, but this is the way that it is.  Unless someone out there has some sort of non-MS .adm template to do this you cannot enforce all 4.  

In a way, this is done by the security policy.  

There may be a way to have this scripted and checked on the login script.  You might want to resubmit this under scripting.  They may have a better answer.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.