Prevent the Use of Certain Passwords in Windows Server 2008R2

Posted on 2011-04-23
Last Modified: 2012-08-14
Is there a way in GPO or other to prevents certain passwords y server users.  I have Windows Server 2008R2.  Is there a way to stop the use of certain passwords, like "password", "1234567", etc.  In windows server is there a way to create a password blacklist?
Question by:wmandallp
    LVL 8

    Accepted Solution

    Server 2008 has policies that can be enabled to prevent this:
    LVL 20

    Assisted Solution

    by:Svet Paperov
    The default password policy on Windows Server 2008 requires at least 3 of the following 4 elements: capital letter, small letter, number, and symbol; the password must be at least 7 characters long and must be changed every 42 days. Also, it cannot include the part of the username.

    You can modify the account password policy using secpol.msc on a stand-alone server or through the Default domain GPO in domain environment.

    So, lazy passwords like those are not allowed, however there is password blacklist.
    LVL 10

    Assisted Solution

    There are 3rd-party tools which let you define more fine-grained policies:

    Featured Post

    Find Ransomware Secrets With All-Source Analysis

    Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

    Join & Write a Comment

    SHARE your personal details only on a NEED to basis. Take CHARGE and SECURE your IDENTITY. How do I then PROTECT myself and stay in charge of my own Personal details (and) - MY own WAY...
    If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
    This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…

    745 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    18 Experts available now in Live!

    Get 1:1 Help Now