Link to home
Create AccountLog in
Avatar of Michael Miller
Michael Miller

asked on

Password policy of 25 characters or more

I want to implement that a policy that requires admin accounts to be 25 characters or more. However the minimum it will allow me to set it to is 14 in Group Policy so is this even possible? 

Avatar of serialband
serialband
Flag of Ukraine image

Maybe you need to use 3rd party software https://www.netwrix.com/password_policy_enforcer.html.

Avatar of ☠ MASQ ☠
☠ MASQ ☠

Check your Relax minimum password length setting. On most current systems you should be able to enforce a minimum length of up to 128 characters.

https://support.microsoft.com/en-us/topic/minimum-password-length-auditing-and-enforcement-on-certain-versions-of-windows-5ef7fecf-3325-f56b-cc10-4fd565aacc59

ASKER CERTIFIED SOLUTION
Avatar of madunix
madunix

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Avatar of Michael Miller

ASKER

I was able to create the policy and I made myself to have the policy. I linked and enforced the policy but I am able to have a 8 character password. It is not being enforced so I changed the policy to a 14 Character policy and same result it is not being enforced. I agree that this is might not best way forward but it is out of my hands. Insurance , Cyber Security team and those above me are suggesting this. 

Did you try changing your password after the policy was applied to admins on the computer?


Have you updated the rule at the DC?


The GPO won't affect existing PWs you just need to ensure they all expire so can be replaced under the new rule (and make sure everyone affected is aware!)

I am using myself as a test and only applied the policy  it to myself. I tried changing the password several times after policy is applied


The default Domain controller Policy is overwriting the new policy?