Avatar of cyberservices
cyberservices
Flag for United States of America asked on

Error: The password you entered doesn't meet minimum security requirements.

Using Exchange 2013 Standard on premise with Active Directory on another server. I keep getting the same error when I use the change password function: The password you entered doesn't meet minimum security requirements. Am I missing a configuration.
I ran this command on the Exchange Server: Get-OwaVirtualDirectory |fl *pass*
Got this: ChangePasswordEnabled : True

I also ran this command on the server and set the GPO password settings way down to get this to work:  net accounts

C:\Windows\system32>net accounts
 Force user logoff how long after time expires?:       Never
 Minimum password age (days):                          30
 Maximum password age (days):                          180
 Minimum password length:                              1
 Length of password history maintained:                24
 The command completed successfully.

The password complexity is disabled.

I entered this password: a1cs6nx.2T   and still got the "The password you entered doesn't meet minimum security requirements."  Doesn't make sense.

What is next?
ExchangeActive DirectorySecurity

Avatar of undefined
Last Comment
cyberservices

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
Hemil Aquino

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
Shaun Vermaak

Is it the first time you assign that password?
For a test set the minimum password age to 0
McKnife

1st: where did you execute the net accounts command? If you executed it on the exchange server, you should add /domain or it will not show the password policy for the domain but the local password policy, instead.
2nd password settings objects might be active and those PSO's override domain password policies.
cyberservices

ASKER
The password used was the first time ever. I executed the net accounts command from a workstation.
I set the minimum to 0 and tried again with a brand new password. Still the same result. I will now take a look at the link above.
I started with Experts Exchange in 2004 and it's been a mainstay of my professional computing life since. It helped me launch a career as a programmer / Oracle data analyst
William Peck
McKnife

" I executed the net accounts command from a workstation" - useless. Please do as suggested and find out what the current domain password policies are and whether a PSO applies.
cyberservices

ASKER
Do I need to execute the command from the Exchange Server or the Domain Controller?
McKnife

You just need to add /domain.
net accounts /domain

Open in new window

To find whether a PSO applies to "Username":
On the powershell, execute
Get-ADUserResultantPasswordPolicy Username 

Open in new window

⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
serialband

How many minimum characters are you supposed to use?  Try adding 2 more characters.  10 characters are actually insufficient these days.  You need at least 12 characters to stay ahead of the computer power to crack passwords in the allotted time frame now.
cyberservices

ASKER
I ran this command Get-ADUserResultantPasswordPolicy Username  replacing the username with the account name in windows powershell. It just went to the next line with now info. What did I miss?
cyberservices

ASKER
The other command net accounts /domain  gave me all the correct information to include: computer role  primary
Experts Exchange is like having an extremely knowledgeable team sitting and waiting for your call. Couldn't do my job half as well as I do without it!
James Murphy
SOLUTION
McKnife

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
cyberservices

ASKER
I set the ‘Minimum Password Age‘ policy to zero. As soon as I did this I was able to change the password!!! Finally.
I'm now changing the history to 24 and the minimum to 12 and retest.
cyberservices

ASKER
I set the minimum to 12 and ran tests. All other settings worked. The only one that was causing the issue was password age has to be 0.