asked on Error: The password you entered doesn't meet minimum security requirements.
Using Exchange 2013 Standard on premise with Active Directory on another server. I keep getting the same error when I use the change password function: The password you entered doesn't meet minimum security requirements. Am I missing a configuration.
I ran this command on the Exchange Server: Get-OwaVirtualDirectory |fl *pass*
Got this: ChangePasswordEnabled : True
I also ran this command on the server and set the GPO password settings way down to get this to work: net accounts
C:\Windows\system32>net accounts
Force user logoff how long after time expires?: Never
Minimum password age (days): 30
Maximum password age (days): 180
Minimum password length: 1
Length of password history maintained: 24
The command completed successfully.
The password complexity is disabled.
I entered this password: a1cs6nx.2T and still got the "The password you entered doesn't meet minimum security requirements." Doesn't make sense.
What is next?
I ran this command on the Exchange Server: Get-OwaVirtualDirectory |fl *pass*
Got this: ChangePasswordEnabled : True
I also ran this command on the server and set the GPO password settings way down to get this to work: net accounts
C:\Windows\system32>net accounts
Force user logoff how long after time expires?: Never
Minimum password age (days): 30
Maximum password age (days): 180
Minimum password length: 1
Length of password history maintained: 24
The command completed successfully.
The password complexity is disabled.
I entered this password: a1cs6nx.2T and still got the "The password you entered doesn't meet minimum security requirements." Doesn't make sense.
What is next?
ExchangeActive DirectorySecurity
Last Comment
cyberservices
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
1st: where did you execute the net accounts command? If you executed it on the exchange server, you should add /domain or it will not show the password policy for the domain but the local password policy, instead.
2nd password settings objects might be active and those PSO's override domain password policies.
2nd password settings objects might be active and those PSO's override domain password policies.
ASKER
The password used was the first time ever. I executed the net accounts command from a workstation.
I set the minimum to 0 and tried again with a brand new password. Still the same result. I will now take a look at the link above.
I set the minimum to 0 and tried again with a brand new password. Still the same result. I will now take a look at the link above.
" I executed the net accounts command from a workstation" - useless. Please do as suggested and find out what the current domain password policies are and whether a PSO applies.
ASKER
Do I need to execute the command from the Exchange Server or the Domain Controller?
You just need to add /domain.
On the powershell, execute
net accounts /domain
On the powershell, execute
Get-ADUserResultantPasswordPolicy Username
How many minimum characters are you supposed to use? Try adding 2 more characters. 10 characters are actually insufficient these days. You need at least 12 characters to stay ahead of the computer power to crack passwords in the allotted time frame now.
ASKER
I ran this command Get-ADUserResultantPasswor
ASKER
The other command net accounts /domain gave me all the correct information to include: computer role primary
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
I set the ‘Minimum Password Age‘ policy to zero. As soon as I did this I was able to change the password!!! Finally.
I'm now changing the history to 24 and the minimum to 12 and retest.
I'm now changing the history to 24 and the minimum to 12 and retest.
ASKER
I set the minimum to 12 and ran tests. All other settings worked. The only one that was causing the issue was password age has to be 0.
For a test set the minimum password age to 0