Error: The password you entered doesn't meet minimum security requirements.
Using Exchange 2013 Standard on premise with Active Directory on another server. I keep getting the same error when I use the change password function: The password you entered doesn't meet minimum security requirements. Am I missing a configuration.
I ran this command on the Exchange Server: Get-OwaVirtualDirectory |fl *pass*
Got this: ChangePasswordEnabled : True
I also ran this command on the server and set the GPO password settings way down to get this to work: net accounts
C:\Windows\system32>net accounts
Force user logoff how long after time expires?: Never
Minimum password age (days): 30
Maximum password age (days): 180
Minimum password length: 1
Length of password history maintained: 24
The command completed successfully.
The password complexity is disabled.
I entered this password: a1cs6nx.2T and still got the "The password you entered doesn't meet minimum security requirements." Doesn't make sense.
Is it the first time you assign that password?
For a test set the minimum password age to 0
McKnife
1st: where did you execute the net accounts command? If you executed it on the exchange server, you should add /domain or it will not show the password policy for the domain but the local password policy, instead.
2nd password settings objects might be active and those PSO's override domain password policies.
cyberservices
ASKER
The password used was the first time ever. I executed the net accounts command from a workstation.
I set the minimum to 0 and tried again with a brand new password. Still the same result. I will now take a look at the link above.
" I executed the net accounts command from a workstation" - useless. Please do as suggested and find out what the current domain password policies are and whether a PSO applies.
cyberservices
ASKER
Do I need to execute the command from the Exchange Server or the Domain Controller?
How many minimum characters are you supposed to use? Try adding 2 more characters. 10 characters are actually insufficient these days. You need at least 12 characters to stay ahead of the computer power to crack passwords in the allotted time frame now.
cyberservices
ASKER
I ran this command Get-ADUserResultantPasswordPolicy Username replacing the username with the account name in windows powershell. It just went to the next line with now info. What did I miss?
cyberservices
ASKER
The other command net accounts /domain gave me all the correct information to include: computer role primary
I set the ‘Minimum Password Age‘ policy to zero. As soon as I did this I was able to change the password!!! Finally.
I'm now changing the history to 24 and the minimum to 12 and retest.
cyberservices
ASKER
I set the minimum to 12 and ran tests. All other settings worked. The only one that was causing the issue was password age has to be 0.
For a test set the minimum password age to 0