Solved

Set Server 2012 AD password requirements to be a combination of all 4 requirements

Posted on 2016-09-12
2
62 Views
Last Modified: 2016-09-14
A certain client would like to make it so that user Active Directory passwords have to contain characters from all four (not just three) of the following four categories (see the screenshot):

-English uppercase characters (A through Z)
- English lowercase characters (a through z)
- Base 10 digits (0 through 9)
- Non alphabetic characters (for example, !, $, #, %)

Is there a way of making it so that all Active Directory account passwords must contain characters from all 4 of these categories (instead of simply requiring only three out of the four)?

Password complexity requirements
0
Comment
Question by:Knowledgeable
2 Comments
 
LVL 38

Accepted Solution

by:
Adam Brown earned 250 total points
ID: 41794520
You would have to utilize third party applications to accomplish this. Password complexity requirements are controlled by what is called a Password Filter, which is written and compiled as a DLL file that is installed on all systems that require increased or decreased password complexity requirements. You could potentially create your own password filter, but this is more complex and potentially dangerous than is warranted. https://anixis.com/default.htm has a good third party solution for allowing better customization of password policies, but in general, you're more or less stuck with what is described there when using just Windows.
0
 
LVL 53

Assisted Solution

by:McKnife
McKnife earned 250 total points
ID: 41794595
I agree. Let me add: requiring all four makes, from the perspective of an attacker who is aware of this, a brute force attack easier, not harder. See http://openwall.info/wiki/john/policy
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OfficeMate Freezes on login or does not load after login credentials are input.
In this article, I will show you HOW TO: Perform a Physical to Virtual (P2V) Conversion the easy way from a computer backup (image).
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

895 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now