Why password change failed with the new 2k12 AD domain?

Posted on 2014-12-29
Last Modified: 2015-01-04
This is a newly-setup MS Windows 2012 R2 AD domain. The newly-setup DC is VMware 5.5 machine. The are a couples of VMs created. However, I found one thing quite strange. Whenever user ctrl-alt-delete in their workstation, and then choose option > password change, they failed have their password change. If changing password on the DC > ad users and computer MMC is working fine. Why? What should I do to make it work?

Question by:MichaelBalack
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
LVL 34

Expert Comment

by:Seth Simmons
ID: 40521916
how does it fail?  any errors?

Author Comment

ID: 40521921
Hi Seth,

The error message:
Unable to update the password. The value provided for new password does not meet the length, complexity, or history requirement of the domain.

Author Comment

ID: 40521953
I saw some articles mentioned have to make the necessary changed on "default domain controller policy". But I tried it, also failed.
Backup Solution for AWS

Read about how CloudBerry Backup fully integrates your backups with Amazon S3 and Amazon Glacier to provide military-grade encryption and dramatically cut storage costs on any platform.


Accepted Solution

MichaelBalack earned 0 total points
ID: 40521964
Both the default domain policy and default domain controller policy were set in group policy management (GPM). However, in administrative tools, found this - active directory administrative center. So, I opened it, and on the left pane, found "new password policy" with setting on the center pane.

This is what I did:

    - untick remember password history - 24
    - on the blank, add "domain users" and "domain computers"; click apply & OK

Later, I manage to change the logged user password without any restrictions.
LVL 34

Expert Comment

by:Seth Simmons
ID: 40522018
there you go; answered your own question

Author Closing Comment

ID: 40529992
It works

Featured Post

Resolve Critical IT Incidents Fast

If your data, services or processes become compromised, your organization can suffer damage in just minutes and how fast you communicate during a major IT incident is everything. Learn how to immediately identify incidents & best practices to resolve them quickly and effectively.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Know what services you can and cannot, should and should not combine on your server.
A procedure for exporting installed hotfix details of remote computers using powershell
In this Micro Tutorial viewers will learn how they can get their files copied out from their unbootable system without need to use recovery services. As an example non-bootable Windows 2012R2 installation is used which has boot problems.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question