Solved

Windows 2008 not taking complex passwords

Posted on 2014-10-31
4
142 Views
Last Modified: 2014-11-07
I have a Windows 2008 server as the DC and setup a password policy.  I've set history to 5 remembered, Max password age to 90 days, minimum age to 0, minimum length to 8 characters, set complexity requirement and store password using reversible encryption.  When ever the user tries to change their password, Windows says it don't meet the minimum requirements.  I've even tried complex password generators  generating password way beyond the requirements, and Windows still states the password is no good.  Please help, end users are getting mad.
0
Comment
Question by:kfasick
  • 2
4 Comments
 
LVL 57

Assisted Solution

by:Cliff Galiher
Cliff Galiher earned 250 total points
ID: 40416679
You are making the changes to the default domain policy? And, as an aside, why are you storing passwords with reversible encryption? Pretty much defeats the purpose of any password complexity rules.
0
 

Author Comment

by:kfasick
ID: 40416684
Yes, I'm using the default domain policy.  So if I use the "reversible encryption" I can't use the complex password rule?
0
 
LVL 57

Expert Comment

by:Cliff Galiher
ID: 40416735
"Can't?" I don't think the system actually blocks you. But the reversible encryption has been around since NT4 and is all but worthless. If you use it, having co pled passwords does no good as anybody can simply reverse the password and get it, no matter how complex. It is a terrible settings to turn on inkless you have a valid business case to do so, and even then, should be done in an isolated environment and only for that specific purpose.
0
 
LVL 54

Accepted Solution

by:
McKnife earned 250 total points
ID: 40417114
Please use RSOP.msc on all your DCs and see if the pw settings are as expected.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Scenario:  You do full backups to a internal hard drive in either product (SBS or Server 2008).  All goes well for a very long time.  One day, backups begin to fail with a message that the disk is full.  Your disk contains many, many more backups th…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

837 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question