Why password change failed with the new 2k12 AD domain?

Posted on 2014-12-29
Last Modified: 2015-01-04
This is a newly-setup MS Windows 2012 R2 AD domain. The newly-setup DC is VMware 5.5 machine. The are a couples of VMs created. However, I found one thing quite strange. Whenever user ctrl-alt-delete in their workstation, and then choose option > password change, they failed have their password change. If changing password on the DC > ad users and computer MMC is working fine. Why? What should I do to make it work?

Question by:MichaelBalack
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
LVL 35

Expert Comment

by:Seth Simmons
ID: 40521916
how does it fail?  any errors?

Author Comment

ID: 40521921
Hi Seth,

The error message:
Unable to update the password. The value provided for new password does not meet the length, complexity, or history requirement of the domain.

Author Comment

ID: 40521953
I saw some articles mentioned have to make the necessary changed on "default domain controller policy". But I tried it, also failed.
Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.


Accepted Solution

MichaelBalack earned 0 total points
ID: 40521964
Both the default domain policy and default domain controller policy were set in group policy management (GPM). However, in administrative tools, found this - active directory administrative center. So, I opened it, and on the left pane, found "new password policy" with setting on the center pane.

This is what I did:

    - untick remember password history - 24
    - on the blank, add "domain users" and "domain computers"; click apply & OK

Later, I manage to change the logged user password without any restrictions.
LVL 35

Expert Comment

by:Seth Simmons
ID: 40522018
there you go; answered your own question

Author Closing Comment

ID: 40529992
It works

Featured Post

Online Training Solution

Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action. Forget about retraining and skyrocket knowledge retention rates.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

My GPO's made for 2008 R2 servers were not allowing me to RDP into a new 2012 server by default.  That’s why I tried to allow RDP via Powershell, because I could log into a remote shell without further configuration. Below I will describe how I wen…
Recently, I was assigned the task of performing a hardware refresh in the datacenter. The previous Windows 2008 systems were connected to the SAN via fiber channel HBA’s and among other thing, had PowerPath installed in order to provide sufficient f…
In this Micro Tutorial viewers will learn how they can get their files copied out from their unbootable system without need to use recovery services. As an example non-bootable Windows 2012R2 installation is used which has boot problems.
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…

729 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question